4.16. MSRPC vulnerabilities

Over the last years, several security vulnerabilities were discovered in the Windows MSRPC subsystem.

Follows a list of Microsoft security patches that fixed vulnerabilities related to MSRPC, either in the MSRPC subsystem or in system components running MSRPC services:

The following table lists the MSRPC interfaces that were affected by vulnerabilities:

Table 4.135. Vulnerabilities in MSRPC interfaces

Microsoft Security BulletinPublication DateAffected MSRPC interface(s)Affected softwareReference
MS99-020June 23, 1999lsarpcWindows NT 4.0CVE-1999-0721
MS99-055December 09, 1999srvsvcWindows NT 4.0CVE-1999-0980
MS99-057December 16, 1999lsarpcWindows NT 4.0CVE-1999-0995
MS00-040June 08, 2000winregWindows NT 4.0CVE-2000-0377
MS00-062August 28, 2000lsarpcWindows 2000CVE-2000-0771
MS01-041July 26, 2001Multiple interfacesWindows NT 4.0, 2000, Exchange, SQL ServerCVE-2001-0509
MS01-048September 10, 2001epmpWindows NT 4.0CVE-2001-0662
MS03-001January 22, 2003locatorWindows NT 4.0, 2000, XPCVE-2003-0003
MS03-010March 26, 2003epmpWindows NT 4.0, 2000, XPCVE-2002-1561
MS03-026July 16, 2003ISystemActivator, IRemoteActivation (IActivation)Windows NT 4.0, 2000, XP, Server 2003CVE-2003-0352
MS03-039September 10, 2003ISystemActivator, IRemoteActivation (IActivation)Windows NT 4.0, 2000, XP, Server 2003 CVE-2003-0528, CVE-2003-0605, CVE-2003-0715
MS03-043October 15, 2003msgsvcWindows NT 4.0, 2000, XP, Server 2003CVE-2003-0717
MS03-049November 11, 2003wkssvcWindows 2000, XPCVE-2003-0812
MS04-011April 13, 2004dssetupWindows 2000, XPCVE-2003-0533
MS04-012April 13, 2004IRemoteActivation (IActivation)Windows 2000, XP CVE-2004-0116, CVE-2004-0124
MS04-031October 12, 2004nddeapiWindows NT 4.0, 2000, XP, Server 2003 CVE-2004-0206
MS05-007February 8. 2005srvsvcWindows XPCVE-2005-0051
MS05-010February 8, 2005llsrpcWindows NT 4.0, 2000, Server 2003CVE-2005-0050
MS05-017April 12, 2005qmcommWindows 2000, XP SP1CVE-2005-0059
MS05-039August 9, 2005pnpWindows 2000, XP, Server 2003CVE-2005-1983
MS05-040August 9, 2005tapsrvWindows 2000, XP, Server 2003CVE-2005-0058
MS05-043August 9, 2005spoolssWindows 2000, XP, Server 2003CVE-2005-1984
MS05-046October 11, 2005nwwksWindows 2000, XP, Server 2003CVE-2005-1985
MS05-047October 11, 2005pnpWindows 2000, XPCVE-2005-2120
MS05-051October 11, 2005IXnRemoteWindows 2000, XP, Server 2003CVE-2005-2119
MS06-008February 14, 2006davclntrpcWindows XP, Server 2003CVE-2006-0013
MS06-018May 9, 2006IXnRemoteWindows 2000, XP, Server 2003 CVE-2006-0034, CVE-2006-1184

Interesting security advisories related to MSRPC:

Other MSRPC-related bugs: