CVE-2003-0352
7.5 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.972 High
EPSS
Percentile
99.8%
Buffer overflow in a certain DCOM interface for RPC in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a malformed message, as exploited by the Blaster/MSblast/LovSAN and Nachi/Welchia worms.
References
lists.grok.org.uk/pipermail/full-disclosure/2003-July/007079.html
lists.grok.org.uk/pipermail/full-disclosure/2003-July/007357.html
marc.info/?l=bugtraq&m=105838687731618&w=2
marc.info/?l=bugtraq&m=105914789527294&w=2
www.cert.org/advisories/CA-2003-16.html
www.cert.org/advisories/CA-2003-19.html
www.kb.cert.org/vuls/id/568148
www.securityfocus.com/bid/8205
www.xfocus.org/documents/200307/2.html
docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-026
exchange.xforce.ibmcloud.com/vulnerabilities/12629
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A194
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2343
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A296
Social References
More
Related
7.5 High
AI Score
Confidence
Low
7.5 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
0.972 High
EPSS
Percentile
99.8%