CVE-2003-0719

Name of the Vulnerable Software and Affected Versions Microsoft Windows NT 4.0 SP6a Microsoft Windows 2000 SP2 through SP4 Microsoft Windows XP SP1 Microsoft Windows Server 2003 Microsoft NetMeeting Microsoft Windows 98 Microsoft Windows ME

Description The issue is related to a buffer overflow in the Private Communications Transport (PCT) protocol implementation in the Microsoft SSL library. This allows remote attackers to execute arbitrary code via PCT 1.0 handshake packets.

Recommendations For Microsoft Windows NT 4.0 SP6a, apply the necessary patch to fix the buffer overflow issue. For Microsoft Windows 2000 SP2 through SP4, apply the necessary patch to fix the buffer overflow issue. For Microsoft Windows XP SP1, apply the necessary patch to fix the buffer overflow issue. For Microsoft Windows Server 2003, apply the necessary patch to fix the buffer overflow issue. For Microsoft NetMeeting, apply the necessary patch to fix the buffer overflow issue. For Microsoft Windows 98 and Windows ME, apply the necessary patch to fix the buffer overflow issue.