Lucene search

MitreCVE-2003-0530

HistoryAug 27, 2003 - 4:00 a.m.

CVE-2003-0530

2003-08-2704:00:00

mitre

web.nvd.nist.gov

cve-2003-0530

buffer overflow

br549.dll

activex control

internet explorer

remote code execution

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS

0.1

Percentile

94.9%

JSON

Buffer overflow in the BR549.DLL ActiveX control for Internet Explorer 5.01 SP3 through 6.0 SP1 allows remote attackers to execute arbitrary code.

Affected configurations

Nvd

Node

microsoftieMatch6.0sp1

microsoftinternet_explorerMatch5.0.1

microsoftinternet_explorerMatch5.0.1sp1

microsoftinternet_explorerMatch5.0.1sp2

microsoftinternet_explorerMatch5.0.1sp3

microsoftinternet_explorerMatch5.5

microsoftinternet_explorerMatch5.5sp2

microsoftinternet_explorerMatch6.0

VendorProductVersionCPE
microsoftie6.0cpe:2.3:a:microsoft:ie:6.0:sp1:*:*:*:*:*:*
microsoftinternet_explorer5.0.1cpe:2.3:a:microsoft:internet_explorer:5.0.1:*:*:*:*:*:*:*
microsoftinternet_explorer5.0.1cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp1:*:*:*:*:*:*
microsoftinternet_explorer5.0.1cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp2:*:*:*:*:*:*
microsoftinternet_explorer5.0.1cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp3:*:*:*:*:*:*
microsoftinternet_explorer5.5cpe:2.3:a:microsoft:internet_explorer:5.5:*:*:*:*:*:*:*
microsoftinternet_explorer5.5cpe:2.3:a:microsoft:internet_explorer:5.5:sp2:*:*:*:*:*:*
microsoftinternet_explorer6.0cpe:2.3:a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	ie	6.0	cpe:2.3:a:microsoft:ie:6.0:sp1::::::
microsoft	internet_explorer	5.0.1	cpe:2.3:a:microsoft:internet_explorer:5.0.1:::::::*
microsoft	internet_explorer	5.0.1	cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp1::::::
microsoft	internet_explorer	5.0.1	cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp2::::::
microsoft	internet_explorer	5.0.1	cpe:2.3:a:microsoft:internet_explorer:5.0.1:sp3::::::
microsoft	internet_explorer	5.5	cpe:2.3:a:microsoft:internet_explorer:5.5:::::::*
microsoft	internet_explorer	5.5	cpe:2.3:a:microsoft:internet_explorer:5.5:sp2::::::
microsoft	internet_explorer	6.0	cpe:2.3:a:microsoft:internet_explorer:6.0:::::::*

References

secunia.com/advisories/9580

securitytracker.com/id?1007538

www.cert.org/advisories/CA-2003-22.html

www.kb.cert.org/vuls/id/548964

www.securityfocus.com/bid/8454

docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-032

exchange.xforce.ibmcloud.com/vulnerabilities/12962

CVSS2

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

EPSS

0.1

Percentile

94.9%

JSON

Related for CVE-2003-0530