Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2003-0605
HistoryAug 27, 2003 - 4:00 a.m.

CVE-2003-0605

2003-08-2704:00:00
[email protected]
web.nvd.nist.gov

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.5 Medium

AI Score

Confidence

High

0.967 High

EPSS

Percentile

99.7%

JSON

The RPC DCOM interface in Windows 2000 SP3 and SP4 allows remote attackers to cause a denial of service (crash), and local attackers to use the DoS to hijack the epmapper pipe to gain privileges, via certain messages to the __RemoteGetClassObject interface that cause a NULL pointer to be passed to the PerformScmStage function.

Affected configurations

NVD
Node
microsoftwindows_2000
OR
microsoftwindows_2000sp1
OR
microsoftwindows_2000sp2
OR
microsoftwindows_2000sp3
OR
microsoftwindows_2000sp4

Related

cvelist 2
cve 2
checkpoint_advisories 2
seebug 1
nessus 3
cert 1
nvd 1
openvas 1
securityvulns 1
cvelist
cvelist
CVE-2003-0605
2003-07-29 04:00:00
CVE-2003-0746
2003-09-06 04:00:00
cve
cve
CVE-2003-0605
2003-08-27 04:00:00
CVE-2003-0746
2003-10-20 04:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft RPCSS DCOM Interface Privilege Escalation - Ver2 (CVE-2003-0605)
2014-04-16 00:00:00
Unauthenticated DCOM SystemActivation/RemoteActivation traffic (CVE-2003-0352; CVE-2003-0605; CVE-2003-0715)
2007-09-06 00:00:00
seebug
seebug
MS Windows (RPC2) Universal Exploit & DoS (RPC3) (MS03-039)
2003-10-09 00:00:00
nessus
nessus
MS03-039: Microsoft Windows RPC DCOM Interface epmapper Pipe Hijack Local Privilege Escalation (824146) (intrusive check)
2003-07-22 00:00:00
MS03-039: Microsoft RPC Interface Buffer Overrun (824146) (uncredentialed check)
2003-09-10 00:00:00
MS03-026 / MS03-039: Buffer Overrun In RPCSS Service Could Allow Code Execution (823980 / 824146)
2003-07-17 00:00:00
cert
cert
Microsoft Windows RPC service vulnerable to denial of service
2003-07-31 00:00:00
nvd
nvd
CVE-2003-0746
2003-10-20 04:00:00
openvas
openvas
Microsoft Windows RPC Interface Buffer Overrun Vulnerability (KB824146)
2009-11-16 00:00:00
securityvulns
securityvulns
CERT Advisory CA-2003-23 RPCSS Vulnerabilities in Microsoft Windows
2003-09-11 00:00:00

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

6.5 Medium

AI Score

Confidence

High

0.967 High

EPSS

Percentile

99.7%

JSON
Related for NVD:CVE-2003-0605
cvelist2cve2checkpoint_advisories2seebug1nessus3cert1nvd1openvas1securityvulns1