CVE-2002-0724

Microsoft Windows NT and Windows 2000 - Denial of Service via SMB_COM_TRANSACTION Packet

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-2002-0724. PoCs published by zamolx3, Frederic Deletang.

AI-analyzed exploit summary The provided text describes a buffer overflow vulnerability in Microsoft Windows SMB protocol handling (CVE-2002-0724), which may allow arbitrary code execution or system crashes. It mentions exploitation via malformed SMB requests but lacks actual exploit code.

Description

Buffer overflow in SMB (Server Message Block) protocol in Microsoft Windows NT, Windows 2000, and Windows XP allows attackers to cause a denial of service (crash) via a SMB_COM_TRANSACTION packet with a request for the (1) NetShareEnum, (2) NetServerEnum2, or (3) NetServerEnum3, aka "Unchecked Buffer in Network Share Provider Can Lead to Denial of Service".

Exploits (2)

exploitdb WRITEUP VERIFIED
by zamolx3 · textdoswindows
https://www.exploit-db.com/exploits/21747

The provided text describes a buffer overflow vulnerability in Microsoft Windows SMB protocol handling (CVE-2002-0724), which may allow arbitrary code execution or system crashes. It mentions exploitation via malformed SMB requests but lacks actual exploit code.

Classification
Writeup 90%
Attack Type
Rce | Dos
Complexity
Moderate
Reliability
Theoretical
Target: Microsoft Windows (SMB protocol)
No auth needed
Prerequisites: Network access to SMB service · Ability to send crafted SMB packets
devstral-2 · analyzed Feb 16, 2026 Full analysis →
exploitdb WORKING POC VERIFIED
by Frederic Deletang · cdoswindows
https://www.exploit-db.com/exploits/21746

This exploit is a proof-of-concept for CVE-2002-0724, a buffer overflow vulnerability in the SMB protocol implementation of Microsoft Windows. It sends malformed SMB requests to trigger a denial-of-service (DoS) condition by corrupting heap memory.

Classification
Working Poc 90%
Attack Type
Dos
Complexity
Moderate
Reliability
Reliable
Target: Microsoft Windows (SMB protocol implementation)
No auth needed
Prerequisites: Network access to the target's SMB service (port 445 or 139)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (6)

Core 6
Core References
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=103011556323184&w=2
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/342243
Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A189
Patch, Third Party Advisory, US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/250635
US Government Resource third-party-advisory x_refsource_cert-vn
http://www.kb.cert.org/vuls/id/311619

Scores

EPSS 0.3013
EPSS Percentile 98.0%

Details

Status published
Products (3)
microsoft/windows_2000 (4 CPE variants)
microsoft/windows_nt 4.0 (24 CPE variants)
microsoft/windows_xp (2 CPE variants)
Published Sep 24, 2002
Tracked Since Feb 18, 2026