CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
Confidence
High
EPSS
Percentile
99.9%
Added: 04/04/2006
CVE: CVE-2003-0533
BID: 10108
OSVDB: 5248
The Local Security Authority Subsystem Service (LSASS) provides an interface for managing local security, domain authentication, and Active Directory processes.
A buffer overflow in the **DsRolepInitializeLog**
function in the Windows LSASS service allows remote command execution.
Apply the patch referenced in Microsoft Security Bulletin 04-011.
http://www.kb.cert.org/vuls/id/753212
This exploit may cause the target system to crash.
Windows 2000
Windows XP