VDB
CVE-2003-0711
CVE-2003-0711
PUBLISHED
CVSS 7.5 HIGH
Stack-based buffer overflow in the PCHealth system in the Help and Support Center function in Windows XP and Windows Server 2003 allows remote attackers to execute arbitrary code via a long query in an HCP URL.
EPSS 49.00% · 97.8th percentile
Risk Scores
CVSS 2.0
7.5
EPSS Score
49.00%
97.8th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| microsoft | windows_xp | |
| microsoft | windows_2003_server | r2, r2, enterprise |
| microsoft | windows_nt | 4.0, 4.0, 4.0 |
| microsoft | windows_2000 | |
| microsoft | windows_me |
Timeline
- Oct 17, 2003 CVE Published
- Feb 4, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
- Dec 22, 2023 EPSS Score
- Apr 5, 2024 EPSS Score
References
- VU#467036 third-party-advisory
- oval:org.mitre.oval:def:3889 vdb
- oval:org.mitre.oval:def:3685 vdb
- CA-2003-27 third-party-advisory
- 8828 vdb
- oval:org.mitre.oval:def:4706 vdb
- 20031016 Microsoft PCHealth 2003/XP Buffer Overflow (#NISR15102003) mailing-list
- http://www.ngssoftware.com/advisories/ms-pchealth.txt url
- 20031016 Microsoft PCHealth 2003/XP Buffer Overflow (#NISR15102003) mailing-list
- oval:org.mitre.oval:def:217 vdb
- MS03-044 vendor-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2003-0711 advisory