CVE-2003-0110

The Winsock Proxy service in Microsoft Proxy Server 2.0 and the Microsoft Firewall service in Internet Security and Acceleration (ISA) Server 2000 allow remote attackers to cause a denial of service (CPU consumption or packet storm) via a spoofed, malformed packet to UDP port 1745.

Published: May 5, 2003
Updated: Apr 13, 2023
CVE: CVE-2003-0110
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:N/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
microsoft / isa_server	2000-sp1	2000-sp1.x
microsoft / isa_server	2000-fp1	2000-fp1.x
microsoft / proxy_server	2.0	2.0.x
microsoft / isa_server	2000	2000.x
microsoft / proxy_server	2.0-sp1	2.0-sp1.x

http://marc.info/?l=bugtraq&m=104994487012027&w=2
http://www.idefense.com/advisory/04.09.03.txt
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-012
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A406

Vulnerability Database

289,599

CVE-2003-0110