Buy or Renew
Buy or Renew
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 
cancel
Start a conversation
763
Views
0
Helpful
1
Replies

Signature ID 3314 - Window Locator Service Overflow (Deprecated)

RobhernandeZ
Level 1
Level 1

‎01-13-2005 07:02 AM - edited ‎03-10-2019 01:13 AM

seeing a lot (thousands) hits of this signature with the victim as a printer or sms device. Is this something I need to be concerned about?

Labels:
0 Helpful
1 Reply 1

craiwill
Cisco Employee
Cisco Employee

‎01-13-2005 08:40 AM

In order to answer your question it would be helpful to know which platform and software version you are using. I also need to know which subsig is firing. There are known false positives associated with 3314 subsig 0. It is disabled by default and marked as deprecated since 3314 subsig 1 more accurately detects this overflow. If anyone is actively trying to exploit this overflow then 3314.1 would be firing.

0 Helpful
Customers Also Viewed These Support Documents
Review Cisco Networking for a $25 gift card