Lucene search
SAINT CorporationSAINT:0DCCF88BC69F584F4462E15AE16238D3HistoryApr 04, 2006 - 12:00 a.m.
Windows RPC DCOM interface buffer overflow
2006-04-0400:00:00
SAINT Corporation
www.saintcorporation.com
25
0.971 High
EPSS
Percentile
99.7%
Added: 04/04/2006
CVE: CVE-2003-0352
BID: 8205
OSVDB: 2100
Background
The Distributed Component Object Model is a technology in Microsoft Windows operating systems which allows software components to communicate. Remote Procedure Call (RPC) is a protocol used to request a service from a program on another computer.
Problem
Insufficient input validation in the Windows RPCSS service leads to a buffer overflow in the DCOM process, leading to command execution.
Resolution
Install the patch referenced in Microsoft Security Bulletin 03-026.
References
<http://www.cert.org/advisories/CA-2003-16.html>
Limitations
This exploit may cause the target system to crash.
Platforms
Windows 2000
Windows XP
Windows Server 2003
Related
packetstorm
packetstorm
Microsoft RPC DCOM Interface Overflow
2009-11-26 00:00:00
checkpoint_advisories
checkpoint_advisories
Blaster Attacks (CVE-2003-0352)
2007-09-07 00:00:00
Blaster Attacks (CVE-2003-0352; CVE-2003-0353)
2007-09-07 00:00:00
saint
saint
Windows RPC DCOM interface buffer overflow
2006-04-04 00:00:00
Windows RPC DCOM interface buffer overflow
2006-04-04 00:00:00
Windows RPC DCOM interface buffer overflow
2006-04-04 00:00:00
nessus
nessus
openvas
openvas
Microsoft RPC Interface Buffer Overrun (823980)
2005-11-03 00:00:00
cert
cert
Microsoft Windows RPC vulnerable to buffer overflow
2003-07-17 00:00:00
canvas
canvas
Immunity Canvas: MS03_026
2003-08-18 04:00:00
cve
cve
trendmicroblog
trendmicroblog