CVE-2021-43215: iSNS Server Memory Corruption Vulnerability Can Lead to Remote Code Execution

How could an attacker exploit this vulnerability?

An attacker could send a specially crafted request to the Internet Storage Name Service (iSNS) server, which could result in remote code execution.

What is Windows iSNS?

The Internet Storage Name Service (iSNS) protocol is used for interaction between iSNS servers and iSNS clients. iSNS manages an Internet Storage Name Service (iSNS) server, providing a registration function to allow all entities in a storage network to register and query the iSNS database.

Is Windows iSNS installed by default?

No.