CVE-2003-0822

2003-12-1505:00:00

[email protected]

web.nvd.nist.gov

cve-2003-0822

buffer overflow

fp30reg.dll

microsoft frontpage server extensions

fpse

remote code execution

crafted chunked encoded request

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

7.4 High

AI Score

Confidence

Low

0.971 High

EPSS

Percentile

99.8%

JSON

Buffer overflow in the debug functionality in fp30reg.dll of Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers to execute arbitrary code via a crafted chunked encoded request.

Affected configurations

NVD

Node

microsoftfrontpage_server_extensionsMatch2000

microsoftfrontpage_server_extensionsMatch2002

microsoftsharepoint_team_servicesMatch2002

Node

microsoftwindows_2000sp2

microsoftwindows_2000sp3

microsoftwindows_xpgoldprofessional

microsoftwindows_xpsp164-bit

microsoftwindows_xpsp1home

CPENameOperatorVersion
microsoft:frontpage_server_extensionsmicrosoft frontpage server extensionseq2000
microsoft:frontpage_server_extensionsmicrosoft frontpage server extensionseq2002
microsoft:sharepoint_team_servicesmicrosoft sharepoint team serviceseq2002

CPE	Name	Operator	Version
microsoft:frontpage_server_extensions	microsoft frontpage server extensions	eq	2000
microsoft:frontpage_server_extensions	microsoft frontpage server extensions	eq	2002
microsoft:sharepoint_team_services	microsoft sharepoint team services	eq	2002