CVE-2003-0352

EPSS 98.6%

Vexday Risk Score

60Attention

SSVC decision (CISA)

Attend

PoC available → attend closely

CVSS —EPSS 98.6%KEV nãoPoC públicaNuclei —Metasploit simPatch referenciado

Lifecycle

16 Jul 2003Metasploit module available

17 Jul 2003Published on NVD

11 Aug 2003Public PoC

Recommendation: Plan a near-term fix — a public PoC already exists.

Buffer overflow in a certain DCOM interface for RPC in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a malformed message, as exploited by the Blaster/MSblast/LovSAN and Nachi/Welchia worms.

Affected products

n/a · n/a

public PoCs found — 3

exploitdbwww.exploit-db.com/exploits/16749unverified exploitdbwww.exploit-db.com/exploits/100unverified exploitdbwww.exploit-db.com/exploits/22917unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://lists.grok.org.uk/pipermail/full-disclosure/2003-July/007079.html http://lists.grok.org.uk/pipermail/full-disclosure/2003-July/007357.html http://marc.info/?l=bugtraq&m=105838687731618&w=2 http://marc.info/?l=bugtraq&m=105914789527294&w=2 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-026 https://exchange.xforce.ibmcloud.com/vulnerabilities/12629 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A194 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2343 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A296 http://www.cert.org/advisories/CA-2003-16.html http://www.cert.org/advisories/CA-2003-19.html http://www.kb.cert.org/vuls/id/568148