Buffer overflow in Microsoft Windows_xp

CVE-2012-1852

Heap-based buffer overflow in the Remote Administration Protocol (RAP) implementation in the LanmanWorkstation service in Microsoft Windows XP SP2 and SP3 allows remote attackers to execute arbitrary code via crafted RAP response packets…

Vulnerability class: Buffer Overflow

EPSS: 0.644 (98.5th percentile) — read the EPSS interpretation.

Affected products

Microsoft Windows_xp
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

oval:org.mitre.oval:def:15079 (x_refsource_OVAL, signature, vdb-entry)
TA12-227A (US Government Resource, x_refsource_CERT, third-party-advisory)
MS12-054 (x_refsource_MS, vendor-advisory)