oc192

2 exploits Active since Aug 2003

CVE-2003-0605 EXPLOITDB c WORKING POC

Windows 2000 SP3-SP4 - Denial of Service and Privilege Escalation via RPC DCOM Interface

The RPC DCOM interface in Windows 2000 SP3 and SP4 allows remote attackers to cause a denial of service (crash), and local attackers to use the DoS to hijack the epmapper pipe to gain privileges, via certain messages to the __RemoteGetClassObject interface that cause a NULL pointer to be passed to the PerformScmStage function.

View Code

CVE-2004-2442 EXPLOITDB c WORKING POC

F-Secure Anti-Virus <5.43 - Auth Bypass

Multiple interpretation error in various F-Secure Anti-Virus products, including Workstation 5.43 and earlier, Windows Servers 5.50 and earlier, MIMEsweeper 5.50 and earlier, Anti-Virus for Linux Servers and Gateways 4.61 and earlier, and other products, allows remote attackers to bypass antivirus protection via a compressed file with both local and global headers set to zero, which does not prevent the compressed file from being opened on the target system.

View Code