CVE-2010-2742

Name of the Vulnerable Software and Affected Versions Microsoft Windows Server 2003 SP2 Microsoft Windows Server 2008 Gold, SP2, and R2

Description The issue concerns a denial of service (NULL pointer dereference and reboot) in the Netlogon RPC Service when the domain controller role is enabled. This can be triggered by remote attackers via a crafted RPC packet.

Recommendations For Microsoft Windows Server 2003 SP2, update to a version that includes the fix for this issue. For Microsoft Windows Server 2008 Gold, SP2, and R2, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the Netlogon RPC Service to minimize the risk of exploitation.