7.5
CVE-2003-0109
- EPSS 86.4%
- Veröffentlicht 31.03.2003 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:01:32
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Buffer overflow in ntdll.dll on Microsoft Windows NT 4.0, Windows NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows remote attackers to execute arbitrary code, as demonstrated via a WebDAV request to IIS 5.0.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Windows 2000 Updatesp1
Microsoft ≫ Windows 2000 Updatesp2
Microsoft ≫ Windows 2000 Updatesp3
Microsoft ≫ Windows 2000 Terminal Services Updatesp1
Microsoft ≫ Windows 2000 Terminal Services Updatesp2
Microsoft ≫ Windows 2000 Terminal Services Updatesp3
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 86.4% | 0.997 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://marc.info/?l=bugtraq&m=104826476427372&w=2
http://marc.info/?l=bugtraq&m=104861839130254&w=2
http://marc.info/?l=bugtraq&m=104869293619064&w=2
http://marc.info/?l=bugtraq&m=104887148323552&w=2
http://marc.info/?l=bugtraq&m=105768156625699&w=2
http://marc.info/?l=ntbugtraq&m=104826785731151&w=2
http://microsoft.com/downloads/details.aspx?FamilyId=C9A38D45-5145-4844-B62E-C69D32AC929B&displaylang=en
http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ815021
http://www.cert.org/advisories/CA-2003-09.html
http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=22029
http://www.iss.net/security_center/static/11533.php
http://www.kb.cert.org/vuls/id/117394
http://www.nextgenss.com/papers/ms03-007-ntdll.pdf
http://www.securityfocus.com/bid/7116
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-007
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A109