[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

248149

 
 

909

 
 

194803

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2003-0825Date: (C)2004-03-03   (M)2023-12-22


The Windows Internet Naming Service (WINS) for Microsoft Windows Server 2003, and possibly Windows NT and Server 2000, does not properly validate the length of certain packets, which allows attackers to cause a denial of service and possibly execute arbitrary code.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 9.3
Exploit Score: 8.6
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
OSVDB-3903
BID-9624
MS04-006
O-077
VU#445214
win-wins-gsflag-dos(15037)

CPE    22
cpe:/o:microsoft:windows_nt:4.0:sp6:server
cpe:/o:microsoft:windows_2000::sp4:advanced_server
cpe:/o:microsoft:windows_2000::sp1:advanced_server
cpe:/o:microsoft:windows_nt:4.0:sp4:server
...
CWE    1
CWE-20
OVAL    4
oval:org.mitre.oval:def:800
oval:org.mitre.oval:def:801
oval:org.mitre.oval:def:802
oval:org.mitre.oval:def:704
...

© SecPod Technologies