Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0719

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2003-0719
Last Modified 10 Sep 2008 03:20:14
Published 01 Jun 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0719

Summary

Buffer overflow in the Private Communications Transport (PCT) protocol implementation in the Microsoft SSL library, as used in Microsoft Windows NT 4.0 SP6a, 2000 SP2 through SP4, XP SP1, Server 2003, NetMeeting, Windows 98, and Windows ME, allows remote attackers to execute arbitrary code via PCT 1.0 handshake packets.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000

  • Microsoft Windows 2003 Server R2

  • Microsoft Windows 98

  • Microsoft Windows Me

  • Microsoft Windows Nt 4.0

  • Microsoft Windows Xp

Application

  • Microsoft Netmeeting


References

CERT-VN - VU#586540

CERT - TA04-104A

ISS - 20040413 Microsoft SSL Library Remote Compromise Vulnerability

BUGTRAQ - 20040430 A technical description of the SSL PCT vulnerability (CVE-2003-0719)

MS - MS04-011


Last Updated: 27 May 2016 10:38:01