What is CVE-2003-0818?

CVE-2003-0818 is a vulnerability in N/a. Published 2004-02-11.

Is CVE-2003-0818 known to be exploited?

5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2003-0818

Multiple integer overflows in Microsoft ASN.1 library (MSASN1.DLL), as used in LSASS.EXE, CRYPT32.DLL, and other Microsoft executables and libraries on Windows NT 4.0, 2000, and XP, allow remote attackers to execute arbitrary code via ASN…

EPSS: 0.897 (99.6th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

References

VU#583108 (x_refsource_CERT-VN, third-party-advisory)
TA04-041A (x_refsource_CERT, third-party-advisory)
oval:org.mitre.oval:def:653 (signature, x_refsource_OVAL, vdb-entry)
20040210 EEYE: Microsoft ASN.1 Library Length Overflow Heap Corruption (mailing-list, x_refsource_BUGTRAQ)
20040210 EEYE: Microsoft ASN.1 Library Bit String Heap Corruption (mailing-list, x_refsource_BUGTRAQ)
oval:org.mitre.oval:def:799 (signature, x_refsource_OVAL, vdb-entry)
oval:org.mitre.oval:def:796 (signature, x_refsource_OVAL, vdb-entry)
VU#216324 (x_refsource_CERT-VN, third-party-advisory)
MS04-007 (x_refsource_MS, vendor-advisory)
20040210 EEYE: Microsoft ASN.1 Library Bit String Heap Corruption (mailing-list, x_refsource_NTBUGTRAQ)

Frequently asked questions

What is CVE-2003-0818?: CVE-2003-0818 is a vulnerability in N/a. Published 2004-02-11.
Is CVE-2003-0818 known to be exploited?: 5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.