VDB

CVE-2003-0352

CVE-2003-0352 PUBLISHED CVSS 7.5 HIGH

Buffer overflow in a certain DCOM interface for RPC in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a malformed message, as exploited by the Blaster/MSblast/LovSAN and Nachi/Welchia worms.

EPSS 91.14% · 99.7th percentile

Risk Scores

CVSS 2.0
7.5
EPSS Score
91.14%
99.7th percentile

Affected Products

VendorProductVersions
microsoftwindows_xp
microsoftwindows_2000
n/an/an/a, n/a
microsoftwindows_nt4.0, 4.0, 4.0
microsoftwindows_2003_serverr2, standard, web

Timeline

  • CVE Published
  • Sep 7, 2007 VulnCheck KEV Exploitation
  • Sep 23, 2010 PoC Published
  • Jan 11, 2011 PoC Published
  • Jun 20, 2017 VulnCheck KEV Exploitation
  • May 29, 2018 PoC Published
  • Feb 4, 2022 EPSS Score
  • Mar 29, 2022 EPSS Score
  • Jul 12, 2022 EPSS Score
  • Sep 4, 2022 EPSS Score
  • Oct 26, 2022 EPSS Score
  • Dec 18, 2022 EPSS Score
Open in Interactive Console →
$ Console Community · 100/wk Open console ›