MS Vulnerability MS04-029

This page shows details and results of our analysis on the malware MS Vulnerability MS04-029

Download Current DAT

Threat Detail

Malware Type: Vulnerability

Malware Sub-type: Microsoft

Discovery Date: 2004-10-12

Next Steps:

Overview
Characteristics
Removal

Overview

Minimum DAT

N/A

Updated DAT

N/A

Minimum Engine

5400.1158

File Length

Description Added

2004-10-12

Description Modified

2004-10-12

Malware Proliferation

Characteristics

The following Microsoft vulnerability was announced on October 12, 2004.

Microsoft Security Bulletin MS04-029
Vulnerability in RPC Runtime Library Could Allow Information Disclosure and Denial of Service (873350)

For Microsoft's details of this vulnerability please see: http://www.microsoft.com/technet/security/bulletin/MS04-029.mspx

Symptoms

Method of Infection

Removal

McAfee IntruShield
A signature set will be released Oct 15th that will provide protection against this vulnerability. McAfee Intrushield sensors deployed in in-line mode can be configured with a response action to drop such packets for preventing these attacks.

McAfee System Compliance Profiler
System Compliance Profile users can detect the MS04-029 (Q873350) vulnerability by:

Downloading the file: SCP_MS04-029_(873350).txt

Copy the contents of the above file, and paste within your main ruleset group.