7.9 High
AI Score
Confidence
Low
9.3 High
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:C/I:C/A:C
0.809 High
EPSS
Percentile
98.2%
Unspecified vulnerability in the Win32 API on Microsoft Windows 2000, XP SP2, and Server 2003 SP1 and SP2 allows remote attackers to execute arbitrary code via certain parameters to an unspecified function.
CPE | Name | Operator | Version |
---|---|---|---|
windows_2003_server | eq | sp1 itanium | |
windows_2003_server | eq | 1.0.0-sp | |
windows_2003_server | eq | sp2 itanium | |
windows_2003_server | eq | 2.0.0-sp |
osvdb.org/35341
secunia.com/advisories/25640
www.kb.cert.org/vuls/id/457281
www.securityfocus.com/archive/1/471947/100/0/threaded
www.securityfocus.com/bid/24370
www.securitytracker.com/id?1018230
www.us-cert.gov/cas/techalerts/TA07-163A.html
www.vupen.com/english/advisories/2007/2155
docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-035
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1643