CVE-2003-0812

Description

Stack-based buffer overflow in a logging function for Windows Workstation Service (WKSSVC.DLL) allows remote attackers to execute arbitrary code via RPC calls that cause long entries to be written to a debug log file ("NetSetup.LOG"), as demonstrated using the NetAddAlternateComputerName API.

Related CPE's

Could not find any relations

References

VU#567620

PatchThird Party AdvisoryUS Government Resource

9011

ExploitPatchVendor Advisory

20040129 Buffer Overrun in Microsoft Windows 2000 Workstation Service (MS03-049)

CA-2003-28

US Government Resource

20031111 EEYE: Windows Workstation Service Remote Buffer Overflow

20031112 Proof of concept for Windows Workstation Service overflow

oval:org.mitre.oval:def:575

oval:org.mitre.oval:def:331

MS03-049

CvssV3 impact

Could not find any metrics

CvssV2 impact

Version	2.0
VectorString	AV:N/AC:L/Au:N/C:P/I:P/A:P
AccessVector	NETWORK
AccessComplexity	LOW
Authentication	NONE
ConfidentialityImpact	PARTIAL
IntegrityImpact	PARTIAL
AvailabilityImpact	PARTIAL
BaseScore	7.5

Created by Yello

About Severity.io