CVE-2003-0352

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Microsoft Windows NT 4.0, 2000, XP, and Server 2003

Description: A buffer overflow issue in a certain DCOM interface for RPC allows remote attackers to execute arbitrary code via a malformed message. This issue has been exploited by the Blaster/MSblast/LovSAN and Nachi/Welchia worms.

Recommendations: For Microsoft Windows NT 4.0, apply the available patch to fix the issue. For Microsoft Windows 2000, apply the available patch to fix the issue. For Microsoft Windows XP, apply the available patch to fix the issue. For Microsoft Windows Server 2003, apply the available patch to fix the issue.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2003-0352

Affected Products

Windows 2000

Windows Nt 4.0

Windows Server 2003

Windows Xp

CVE-2003-0352

Related Identifiers

Affected Products

References · 20