Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2003-0715
HistorySep 17, 2003 - 4:00 a.m.

CVE-2003-0715

2003-09-1704:00:00
[email protected]
web.nvd.nist.gov
63
cve
2003
0715
dcom
buffer overflow
remote code execution

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.7 High

AI Score

Confidence

Low

0.971 High

EPSS

Percentile

99.8%

JSON

Heap-based buffer overflow in the Distributed Component Object Model (DCOM) interface in the RPCSS Service allows remote attackers to execute arbitrary code via a malformed DCERPC DCOM object activation request packet with modified length fields, a different vulnerability than CVE-2003-0352 (Blaster/Nachi) and CVE-2003-0528.

Affected configurations

NVD
Node
microsoftwindows_2000
OR
microsoftwindows_2000sp1
OR
microsoftwindows_2000sp2
OR
microsoftwindows_2000sp3
OR
microsoftwindows_2000sp4
OR
microsoftwindows_2003_serverMatchenterprise64-bit
OR
microsoftwindows_2003_serverMatchenterprise_64-bit
OR
microsoftwindows_2003_serverMatchr264-bit
OR
microsoftwindows_2003_serverMatchr2datacenter_64-bit
OR
microsoftwindows_2003_serverMatchstandard64-bit
OR
microsoftwindows_2003_serverMatchweb
OR
microsoftwindows_ntMatch4.0enterprise_server
OR
microsoftwindows_ntMatch4.0server
OR
microsoftwindows_ntMatch4.0terminal_server
OR
microsoftwindows_ntMatch4.0workstation
OR
microsoftwindows_ntMatch4.0sp1enterprise_server
OR
microsoftwindows_ntMatch4.0sp1server
OR
microsoftwindows_ntMatch4.0sp1terminal_server
OR
microsoftwindows_ntMatch4.0sp1workstation
OR
microsoftwindows_ntMatch4.0sp2enterprise_server
OR
microsoftwindows_ntMatch4.0sp2server
OR
microsoftwindows_ntMatch4.0sp2terminal_server
OR
microsoftwindows_ntMatch4.0sp2workstation
OR
microsoftwindows_ntMatch4.0sp3enterprise_server
OR
microsoftwindows_ntMatch4.0sp3server
OR
microsoftwindows_ntMatch4.0sp3terminal_server
OR
microsoftwindows_ntMatch4.0sp3workstation
OR
microsoftwindows_ntMatch4.0sp4enterprise_server
OR
microsoftwindows_ntMatch4.0sp4server
OR
microsoftwindows_ntMatch4.0sp4terminal_server
OR
microsoftwindows_ntMatch4.0sp4workstation
OR
microsoftwindows_ntMatch4.0sp5enterprise_server
OR
microsoftwindows_ntMatch4.0sp5server
OR
microsoftwindows_ntMatch4.0sp5terminal_server
OR
microsoftwindows_ntMatch4.0sp5workstation
OR
microsoftwindows_ntMatch4.0sp6enterprise_server
OR
microsoftwindows_ntMatch4.0sp6server
OR
microsoftwindows_ntMatch4.0sp6terminal_server
OR
microsoftwindows_ntMatch4.0sp6workstation
OR
microsoftwindows_ntMatch4.0sp6aenterprise_server
OR
microsoftwindows_ntMatch4.0sp6aserver
OR
microsoftwindows_ntMatch4.0sp6aterminal_server
OR
microsoftwindows_ntMatch4.0sp6aworkstation
OR
microsoftwindows_xp64-bit
OR
microsoftwindows_xphome
OR
microsoftwindows_xpgoldprofessional
OR
microsoftwindows_xpsp164-bit
OR
microsoftwindows_xpsp1home

Related

cvelist 5
nvd 5
cve 4
checkpoint_advisories 5
nessus 4
openvas 2
securityvulns 2
cert 3
packetstorm 1
saint 4
canvas 1
trendmicroblog 1
cvelist
cvelist
CVE-2003-0528
2003-09-12 04:00:00
CVE-2003-0715
2003-09-12 04:00:00
CVE-2003-0813
2003-10-15 04:00:00
nvd
nvd
CVE-2003-0715
2003-09-17 04:00:00
CVE-2003-0528
2003-09-17 04:00:00
CVE-2003-0813
2003-11-17 05:00:00
cve
cve
CVE-2003-0528
2003-09-17 04:00:00
CVE-2003-0813
2003-11-17 05:00:00
CVE-2003-0352
2003-08-18 04:00:00
checkpoint_advisories
checkpoint_advisories
Microsoft Windows DCOM RPC Interface Buffer Overflow (MS03-026; CVE-2003-0352; CVE-2003-0715)
2007-09-07 00:00:00
Security Best Practice: Protect Yourself from DCOM vulnerabilities
2006-07-16 00:00:00
Unauthenticated DCOM SystemActivation/RemoteActivation traffic (CVE-2003-0352; CVE-2003-0605; CVE-2003-0715)
2007-09-06 00:00:00
nessus
nessus
MS03-026 / MS03-039: Buffer Overrun In RPCSS Service Could Allow Code Execution (823980 / 824146)
2003-07-17 00:00:00
MS03-039: Microsoft RPC Interface Buffer Overrun (824146) (uncredentialed check)
2003-09-10 00:00:00
MS03-039 Exploitation Backdoor Account Detection
2003-09-17 00:00:00
openvas
openvas
Microsoft Windows RPC Interface Buffer Overrun Vulnerability (KB824146)
2009-11-16 00:00:00
Microsoft RPC Interface Buffer Overrun (823980)
2005-11-03 00:00:00
securityvulns
securityvulns
CERT Advisory CA-2003-23 RPCSS Vulnerabilities in Microsoft Windows
2003-09-11 00:00:00
NSFOCUS SA2003-06 : Microsoft Windows RPC DCOM Interface Heap Overflow Vulnerability
2003-09-11 00:00:00
cert
cert
Microsoft Windows RPCSS Service contains heap overflow in DCOM activation routines
2003-09-10 00:00:00
Microsoft Windows RPCSS Service contains heap overflow in DCOM request filename handling
2003-09-10 00:00:00
Microsoft Windows RPC vulnerable to buffer overflow
2003-07-17 00:00:00
packetstorm
packetstorm
Microsoft RPC DCOM Interface Overflow
2009-11-26 00:00:00
saint
saint
Windows RPC DCOM interface buffer overflow
2006-04-04 00:00:00
Windows RPC DCOM interface buffer overflow
2006-04-04 00:00:00
Windows RPC DCOM interface buffer overflow
2006-04-04 00:00:00
canvas
canvas
Immunity Canvas: MS03_026
2003-08-18 04:00:00
trendmicroblog
trendmicroblog
TippingPoint Threat Intelligence and Zero-Day Coverage – Week of April 17, 2017
2017-04-21 18:23:45

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.7 High

AI Score

Confidence

Low

0.971 High

EPSS

Percentile

99.8%

JSON
Related for CVE-2003-0715
cvelist5nvd5cve4checkpoint_advisories5nessus4openvas2securityvulns2cert3packetstorm1saint4canvas1trendmicroblog1