[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248392

 
 

909

 
 

195452

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2003-0109Date: (C)2003-03-31   (M)2023-12-22


Buffer overflow in ntdll.dll on Microsoft Windows NT 4.0, Windows NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows remote attackers to execute arbitrary code, as demonstrated via a WebDAV request to IIS 5.0.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 7.5
Exploit Score: 10.0
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=22029
http://marc.info/?l=ntbugtraq&m=104826785731151&w=2
http://marc.info/?l=bugtraq&m=104861839130254&w=2
http://marc.info/?l=bugtraq&m=104869293619064&w=2
http://marc.info/?l=bugtraq&m=104887148323552&w=2
http://marc.info/?l=bugtraq&m=105768156625699&w=2
BID-7116
CA-2003-09
MS03-007
Q815021
VU#117394
http-webdav-long-request(11533)
http://microsoft.com/downloads/details.aspx?FamilyId=C9A38D45-5145-4844-B62E-C69D32AC929B&displaylang=en
http://www.nextgenss.com/papers/ms03-007-ntdll.pdf
oval:org.mitre.oval:def:109

CPE    8
cpe:/o:microsoft:windows_2000::sp3
cpe:/o:microsoft:windows_2000_terminal_services::sp2
cpe:/o:microsoft:windows_2000_terminal_services::sp1
cpe:/o:microsoft:windows_2000
...
OVAL    1
oval:org.mitre.oval:def:109

© SecPod Technologies