7.5

CVE-2003-0533

EPSS 88.41%
Published 01.06.2004 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Stack-based buffer overflow in certain Active Directory service functions in LSASRV.DLL of the Local Security Authority Subsystem Service (LSASS) in Microsoft Windows NT 4.0 SP6a, 2000 SP2 through SP4, XP SP1, Server 2003, NetMeeting, Windows 98, and Windows ME, allows remote attackers to execute arbitrary code via a packet that causes the DsRolerUpgradeDownlevelServer function to create long debug entries for the DCPROMO.LOG log file, as exploited by the Sasser worm.

Affected products Warnungen 0 Metrics 2 CWE 0 References 15

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Netmeeting

Microsoft ≫ Windows 2000 Updatesp2

Microsoft ≫ Windows 2000 Updatesp4 Langfr

Microsoft ≫ Windows 2003 Server Versionr2

Microsoft ≫ Windows 98 Updategold

Microsoft ≫ Windows Me

Microsoft ≫ Windows Nt Version4.0 Updatesp6a

Microsoft ≫ Windows Xp Updatesp1 Editiontablet_pc

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	88.41%	0.995

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://www.us-cert.gov/cas/techalerts/TA04-104A.html

Third Party Advisory

US Government Resource

http://lists.grok.org.uk/pipermail/full-disclosure/2004-April/020069.html

http://marc.info/?l=bugtraq&m=108325860431471&w=2

http://www.ciac.org/ciac/bulletins/o-114.shtml

http://www.eeye.com/html/Research/Advisories/AD20040413C.html

http://www.kb.cert.org/vuls/id/753212

Patch

Third Party Advisory

US Government Resource

http://www.securityfocus.com/bid/10108

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-011

https://exchange.xforce.ibmcloud.com/vulnerabilities/15699

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A883

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A898

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A919

https://nvd.nist.gov/vuln/detail/CVE-2003-0533

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2003-0533

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2003-0533

EUVD