{"vuid":"VU#276321","idnumber":"276321","name":"Microsoft Windows Terminal Services Advanced Client (TSAC) contains buffer overflow in process that handles input parameters","keywords":["Microsoft","Windows","Terminal Services Advanced Client","TSAC","buffer overflow","input parameters","Q327521","MS02-046"],"overview":"Microsoft Windows Terminal Services Advanced Client (TSAC) contains a remotely exploitable buffer overflow.","clean_desc":"The Microsoft Windows Terminal Services Advanced Client (TSAC) contains a remotely exploitable buffer overflow. This ActiveX control provides a way to deliver Terminal Services to a client using only a browser. This ActiveX control contains a buffer overflow in the code that processes input parameters.","impact":"A remote attacker can execute arbitrary code on a vulnerable system with the privileges of the victim.","resolution":"Apply a patch.","workarounds":"","sysaffected":"","thanks":"This vulnerability was discovered by Ollie Whitehouse, of \n@Stake","author":"This document was written by Ian A Finlay.","public":["http://www.microsoft.com/technet/security/bulletin/MS02-046.asp","http://www.microsoft.com/WINDOWS2000/techinfo/administration/terminal/tsacfaq.asp"],"cveids":["CVE-2002-0726"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2002-08-23T13:37:38Z","publicdate":"2002-08-22T00:00:00Z","datefirstpublished":"2002-08-27T18:33:37Z","dateupdated":"2002-08-27T18:33:52Z","revision":10,"vrda_d1_directreport":"","vrda_d1_population":"","vrda_d1_impact":"","cam_widelyknown":"15","cam_exploitation":"0","cam_internetinfrastructure":"5","cam_population":"10","cam_impact":"20","cam_easeofexploitation":"16","cam_attackeraccessrequired":"20","cam_scorecurrent":"24","cam_scorecurrentwidelyknown":"30","cam_scorecurrentwidelyknownexploited":"54","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":24.0,"vulnote":null}