CVE-2003-0812 : Stack-based buffer overflow in a logging function for Windows Workstation Service (WKSSVC.DLL) allows remote attackers t

Stack-based buffer overflow in a logging function for Windows Workstation Service (WKSSVC.DLL) allows remote attackers to execute arbitrary code via RPC calls that cause long entries to be written to a debug log file ("NetSetup.LOG"), as demonstrated using the NetAddAlternateComputerName API.

Published 2003-12-15 05:00:00

Updated 2019-04-30 14:27:14

Source MITRE

View at NVD, CVE.org

Vulnerability category: OverflowExecute code

Exploit prediction scoring system (EPSS) score for CVE-2003-0812

Probability of exploitation activity in the next 30 days: 96.96%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 100 % EPSS Score History EPSS FAQ

Metasploit modules for CVE-2003-0812

MS03-049 Microsoft Workstation Service NetAddAlternateComputerName Overflow

Disclosure Date: 2003-11-11

First seen: 2020-04-26

exploit/windows/smb/ms03_049_netapi

This module exploits a stack buffer overflow in the NetApi32 NetAddAlternateComputerName function using the Workstation service in Windows XP. Authors: - hdm <x@hdm.io>

More information

CVSS scores for CVE-2003-0812

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

References for CVE-2003-0812

http://www.cisco.com/warp/public/707/cisco-sa-20040129-ms03-049.shtml
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-049
http://www.securityfocus.com/bid/9011

Microsoft Windows Workstation Service Remote Buffer Overflow Vulnerability
Exploit;Patch;Vendor Advisory
http://www.kb.cert.org/vuls/id/567620

Patch;Third Party Advisory;US Government Resource
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A331
http://marc.info/?l=bugtraq&m=106859247713009&w=2
http://www.cert.org/advisories/CA-2003-28.html

US Government Resource
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A575
http://marc.info/?l=bugtraq&m=106865197102041&w=2

Products affected by CVE-2003-0812

Microsoft » Windows 2000 » Update SP1
cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:*:*:*:*
Matching versions
Microsoft » Windows 2000
cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
Matching versions
Microsoft » Windows 2000 » Update SP2
cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:*:*:*:*
Matching versions
Microsoft » Windows 2000 » Update SP4
cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
Matching versions
Microsoft » Windows 2000 » Update SP3
cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:*:*:*:*
Matching versions
Microsoft » Windows Xp » Media Center Edition
cpe:2.3:o:microsoft:windows_xp:*:*:media_center:*:*:*:*:*
Matching versions
Microsoft » Windows Xp » Update SP1 Home Edition
cpe:2.3:o:microsoft:windows_xp:*:sp1:home:*:*:*:*:*
Matching versions
Microsoft » Windows Xp » Update Gold Professional Edition
cpe:2.3:o:microsoft:windows_xp:*:gold:professional:*:*:*:*:*
Matching versions
Microsoft » Windows Xp » 64-bit Edition
cpe:2.3:o:microsoft:windows_xp:*:*:64-bit:*:*:*:*:*
Matching versions
Microsoft » Windows Xp » Update SP1 64-bit Edition
cpe:2.3:o:microsoft:windows_xp:*:sp1:64-bit:*:*:*:*:*
Matching versions
Microsoft » Windows Xp » Home Edition
cpe:2.3:o:microsoft:windows_xp:*:*:home:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2003-0812

Exploit prediction scoring system (EPSS) score for CVE-2003-0812

Metasploit modules for CVE-2003-0812

MS03-049 Microsoft Workstation Service NetAddAlternateComputerName Overflow

CVSS scores for CVE-2003-0812

References for CVE-2003-0812

Products affected by CVE-2003-0812