Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0897


Vulnerability Score 4.6 4.6
CVE Id CVE-2003-0897
Last Modified 05 Sep 2008 04:35:31
Published 17 Nov 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector LOCAL
Access Complexity LOW
Authentication NONE



"Shatter" vulnerability in CommCtl32.dll in Windows XP may allow local users to execute arbitrary code by sending (1) BCM_GETTEXTMARGIN or (2) BCM_SETTEXTMARGIN button control messages to privileged applications.

Vulnerable Systems

Operating System

  • Microsoft Windows Xp


XF - winxp-commctl32-code-execution(13558)

BUGTRAQ - 20031023 Shatter XP

Last Updated: 27 May 2016 10:38:06