CVE-2003-0812

Windows Workstation Service - Buffer Overflow

Title source: llm

Description

Stack-based buffer overflow in a logging function for Windows Workstation Service (WKSSVC.DLL) allows remote attackers to execute arbitrary code via RPC calls that cause long entries to be written to a debug log file ("NetSetup.LOG"), as demonstrated using the NetAddAlternateComputerName API.

Exploits (5)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16378
exploitdb WORKING POC VERIFIED
by fiNis · cremotewindows
https://www.exploit-db.com/exploits/130
exploitdb WORKING POC VERIFIED
by snooq · cremotewindows
https://www.exploit-db.com/exploits/123
exploitdb WORKING POC VERIFIED
by eEYe · cremotewindows
https://www.exploit-db.com/exploits/119
metasploit WORKING POC GOOD
by hdm · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/smb/ms03_049_netapi.rb

References (9)

Scores

EPSS 0.8164
EPSS Percentile 99.2%

Details

Status published
Products (2)
microsoft/windows_2000 (5 CPE variants)
microsoft/windows_xp (6 CPE variants)
Published Dec 15, 2003
Tracked Since Feb 18, 2026