PT-2003-1815 · Microsoft · Windows Server 2003+2

Robert Graham

Published

2003-10-17

Updated

2019-04-30

CVE-2003-0717

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Messenger Service versions for Windows NT through Server 2003

Description: The issue arises from the Messenger Service not properly verifying the length of the message, allowing remote attackers to execute arbitrary code via a buffer overflow attack.

Recommendations: For Windows NT through Server 2003, consider disabling the Messenger Service as a temporary workaround until a patch is available.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2003-0717

Affected Products

Msn Messenger Service

Windows Nt

Windows Server 2003

PT-2003-1815 · Microsoft · Windows Server 2003+2

CVE-2003-0717

Related Identifiers

Affected Products

References · 13