CVE-2003-0109

EXPLOITED

Microsoft Windows 2000 - Buffer Overflow

Title source: rule

Description

Buffer overflow in ntdll.dll on Microsoft Windows NT 4.0, Windows NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows remote attackers to execute arbitrary code, as demonstrated via a WebDAV request to IIS 5.0.

Exploits (10)

exploitdb WORKING POC VERIFIED

by Metasploit · rubyremotewindows

https://www.exploit-db.com/exploits/16470

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by Schizoprenic · cremotewindows

https://www.exploit-db.com/exploits/51

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by alumni · cremotewindows

https://www.exploit-db.com/exploits/36

View Code ZIP pw:eip

exploitdb WRITEUP VERIFIED

by Morning Wood · textremotewindows

https://www.exploit-db.com/exploits/22367

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by ThreaT · cremotewindows

https://www.exploit-db.com/exploits/22366

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by RoMaNSoFt · cremotewindows

https://www.exploit-db.com/exploits/2

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by mat · perlremotewindows

https://www.exploit-db.com/exploits/22365

View Code ZIP pw:eip

exploitdb WORKING POC VERIFIED

by kralor · cremotewindows

https://www.exploit-db.com/exploits/1

View Code ZIP pw:eip

exploitdb WRITEUP VERIFIED

by [email protected] · textremotewindows

https://www.exploit-db.com/exploits/22368

View Code ZIP pw:eip

metasploit WORKING POC GREAT

by hdm · rubypocwin

https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/iis/ms03_007_ntdll_webdav.rb

View Code ZIP pw:eip

References (16)

[Mailing List] http://marc.info/?l=bugtraq&m=104861839130254&w=2

[Mailing List] http://marc.info/?l=bugtraq&m=104869293619064&w=2

[Mailing List] http://marc.info/?l=bugtraq&m=104887148323552&w=2

[Mailing List] http://marc.info/?l=bugtraq&m=105768156625699&w=2

[Mailing List] http://marc.info/?l=ntbugtraq&m=104826785731151&w=2

[Vendor Advisory] http://microsoft.com/downloads/details.aspx?FamilyId=C9A38D45-5145-4844-B62E-C69D32AC929B&displaylang=en

[Patch, Third Party Advisory, US Government Resource] http://www.cert.org/advisories/CA-2003-09.html

[Patch, Vendor Advisory] http://www.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=22029

[Patch, Vendor Advisory] http://www.iss.net/security_center/static/11533.php

[US Government Resource] http://www.kb.cert.org/vuls/id/117394

[Various Sources] http://www.nextgenss.com/papers/ms03-007-ntdll.pdf

[Exploit, Patch, Vendor Advisory] http://www.securityfocus.com/bid/7116

[Third Party Advisory, VDB Entry] https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A109

[Vendor Advisory] http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ815021

[Vendor Advisory] https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-007

[Mailing List] http://marc.info/?l=bugtraq&m=104826476427372&w=2

Scores

EPSS 0.8871

EPSS Percentile 99.5%

Details

VulnCheck KEV 2017-06-20

Status published

Products (2)

microsoft/windows_2000 (4 CPE variants)

microsoft/windows_2000_terminal_services (4 CPE variants)

Published Mar 31, 2003

Tracked Since Feb 18, 2026