CVE-2003-0719

Description

Buffer overflow in the Private Communications Transport (PCT) protocol implementation in the Microsoft SSL library, as used in Microsoft Windows NT 4.0 SP6a, 2000 SP2 through SP4, XP SP1, Server 2003, NetMeeting, Windows 98, and Windows ME, allows remote attackers to execute arbitrary code via PCT 1.0 handshake packets.

Related CPE's

Could not find any relations

References

20040413 Microsoft SSL Library Remote Compromise Vulnerability

PatchVendor Advisory

20040430 A technical description of the SSL PCT vulnerability (CVE-2003-0719)

PatchVendor Advisory

TA04-104A

Third Party AdvisoryUS Government Resource

VU#586540

PatchThird Party AdvisoryUS Government Resource

oval:org.mitre.oval:def:951

oval:org.mitre.oval:def:903

oval:org.mitre.oval:def:889

oval:org.mitre.oval:def:1093

MS04-011

CvssV3 impact

Could not find any metrics

CvssV2 impact

Version

2.0

VectorString

AV:N/AC:L/Au:N/C:P/I:P/A:P

AccessVector

NETWORK

AccessComplexity

LOW

Authentication

NONE

ConfidentialityImpact

PARTIAL

IntegrityImpact

PARTIAL

AvailabilityImpact

PARTIAL

BaseScore

7.5

Created by Yello
About Severity.io