What is CVE-2003-0109?

CVE-2003-0109 is a vulnerability in N/a. Published 2003-03-18.

Is CVE-2003-0109 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2003-0109

Buffer overflow in ntdll.dll on Microsoft Windows NT 4.0, Windows NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows remote attackers to execute arbitrary code, as demonstrated via a WebDAV request to IIS 5.0.

EPSS: 0.887 (99.5th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

References

20030326 WebDAV exploit: using wide character decoder scheme (mailing-list, x_refsource_BUGTRAQ)
20030321 New attack vectors and a vulnerability dissection of MS03-007 (mailing-list, x_refsource_BUGTRAQ)
oval:org.mitre.oval:def:109 (signature, x_refsource_OVAL, vdb-entry)
20030325 IIS 5.0 WebDAV -Proof of concept-. Fully documented. (mailing-list, x_refsource_BUGTRAQ)
www.nextgenss.com/papers/ms03-007-ntdll.pdf (x_refsource_MISC)
http-webdav-long-request(11533) (vdb-entry, x_refsource_XF)
Q815021 (vendor-advisory, x_refsource_MSKB)
20030317 Microsoft IIS WebDAV Remote Compromise Vulnerability (x_refsource_ISS, third-party-advisory)
20030328 Fate Research Labs Presents: Analysis of the NTDLL.DLL Exploit (mailing-list, x_refsource_BUGTRAQ)
7116 (vdb-entry, x_refsource_BID)

Frequently asked questions

What is CVE-2003-0109?: CVE-2003-0109 is a vulnerability in N/a. Published 2003-03-18.
Is CVE-2003-0109 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.