Vulnerability Note VU#567620
Microsoft Windows Workstation service vulnerable to buffer overflow when sent specially crafted network message
A remotely exploitable vulnerability affects Microsoft Windows Systems. Exploitation of this vulnerability could permit the execution of arbitrary code on the system with elevated privileges. The exploit vector for this vulnerability is highly conducive to a worm or other automated exploit.
A buffer overflow vulnerability exists in the Microsoft Workstation service. A remote attacker that can send a specially-crafted network message to the vulnerable system could exploit this vulnerability to execute arbitrary code with system privileges.
According to the Microsoft Bulletin, MS03-049, the following systems are affected:
According to the Microsoft Bulletin, MS03-049, the following systems are NOT affected:
Note that a proof of concept exploit has been posted publicly.
Exploitation of this vulnerability could permit the execution of arbitrary code on the system with elevated privileges. The exploit vector for this vulnerability is highly conducive to a worm or other automated exploit.
Apply the appropriate update for your system:
As a note in the Microsoft Advisory:
Note the following mitigation strategies from Microsoft's Advisory:
Systems Affected (Learn More)
|Vendor||Status||Date Notified||Date Updated|
|Microsoft Corporation||Affected||-||11 Nov 2003|
CVSS Metrics (Learn More)
This issue was reported by eEye Digital Security and published in the monthly Microsoft Security Bulletin.
This document was written by Jason A Rafail.
- CVE IDs: CAN-2003-0812
- CERT Advisory: CA-2003-28
- Date Public: 11 Nov 2003
- Date First Published: 11 Nov 2003
- Date Last Updated: 12 Nov 2003
- Severity Metric: 45.56
- Document Revision: 15
If you have feedback, comments, or additional information about this vulnerability, please send us email.