CVE-2003-0825
The Windows Internet Naming Service (WINS) for Microsoft Windows Server 2003, and possibly Windows NT and Server 2000, does not properly validate the length of certain packets, which allows attackers to cause a denial of service and possibly execute arbitrary code.
| Software | From | Fixed in |
|---|---|---|
| microsoft / windows_nt | 4.0-sp3 | 4.0-sp3.x |
| microsoft / windows_2003_server | web | web.x |
| microsoft / windows_2003_server | enterprise | enterprise.x |
| microsoft / windows_2003_server | enterprise_64-bit | enterprise_64-bit.x |
| microsoft / windows_2000 | - | - |
| microsoft / windows_nt | 4.0-sp6 | 4.0-sp6.x |
| microsoft / windows_nt | 4.0 | 4.0.x |
| microsoft / windows_nt | 4.0-sp1 | 4.0-sp1.x |
| microsoft / windows_nt | 4.0-sp2 | 4.0-sp2.x |
| microsoft / windows_nt | 4.0-sp4 | 4.0-sp4.x |
| microsoft / windows_nt | 4.0-sp5 | 4.0-sp5.x |
| microsoft / windows_2003_server | r2 | r2.x |
| microsoft / windows_nt | 4.0-sp6a | 4.0-sp6a.x |
| microsoft / windows_2003_server | - | - |
| microsoft / windows_2003_server | standard | standard.x |
- http://www.ciac.org/ciac/bulletins/o-077.shtml
- http://www.kb.cert.org/vuls/id/445214
- http://www.osvdb.org/3903
- http://www.securityfocus.com/bid/9624
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-006
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15037
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A704
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A800
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A801
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A802
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime