PT-2003-1555 · Microsoft · Windows 2000+3

Lsd

Publicado

2003-07-17

Atualizado

2024-02-15

CVE-2003-0352

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Microsoft Windows NT 4.0, 2000, XP, and Server 2003

Description: A buffer overflow issue in a certain DCOM interface for RPC allows remote attackers to execute arbitrary code via a malformed message. This issue has been exploited by the Blaster/MSblast/LovSAN and Nachi/Welchia worms.

Recommendations: For Microsoft Windows NT 4.0, apply the available patch to fix the issue. For Microsoft Windows 2000, apply the available patch to fix the issue. For Microsoft Windows XP, apply the available patch to fix the issue. For Microsoft Windows Server 2003, apply the available patch to fix the issue.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2003-0352

Produtos afetados

Windows 2000

Windows Nt 4.0

Windows Server 2003

Windows Xp

PT-2003-1555 · Microsoft · Windows 2000+3

CVE-2003-0352

Identificadores relacionados

Produtos afetados

Referências · 20