Vulnerability Description
The Windows Internet Naming Service (WINS) for Microsoft Windows Server 2003, and possibly Windows NT and Server 2000, does not properly validate the length of certain packets, which allows attackers to cause a denial of service and possibly execute arbitrary code.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows 2000 | All versions |
| Microsoft | Windows 2003 Server | All versions |
| Microsoft | Windows Nt | 4.0 |
Related Weaknesses (CWE)
References
- http://www.ciac.org/ciac/bulletins/o-077.shtml
- http://www.kb.cert.org/vuls/id/445214US Government Resource
- http://www.osvdb.org/3903
- http://www.securityfocus.com/bid/9624PatchVendor Advisory
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-00
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15037
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://www.ciac.org/ciac/bulletins/o-077.shtml
- http://www.kb.cert.org/vuls/id/445214US Government Resource
- http://www.osvdb.org/3903
- http://www.securityfocus.com/bid/9624PatchVendor Advisory
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-00
FAQ
What is CVE-2003-0825?
CVE-2003-0825 is a vulnerability with a CVSS score of 9.3 (HIGH). The Windows Internet Naming Service (WINS) for Microsoft Windows Server 2003, and possibly Windows NT and Server 2000, does not properly validate the length of certain packets, which allows attackers ...
How severe is CVE-2003-0825?
CVE-2003-0825 has been rated HIGH with a CVSS base score of 9.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-0825?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows 2000, Microsoft Windows 2003 Server, Microsoft Windows Nt.