Back to search
CVE-2003-0605
Published: Jul 29, 2003
Modified: Aug 8, 2024
PUBLISHED
Description
The RPC DCOM interface in Windows 2000 SP3 and SP4 allows remote attackers to cause a denial of service (crash), and local attackers to use the DoS to hijack the epmapper pipe to gain privileges, via certain messages to the __RemoteGetClassObject interface that cause a NULL pointer to be passed to the PerformScmStage function.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20030720 Microsoft Windows 2000 RPC DCOM Interface DOS AND Privilege Escalation Vulnerability
mailing-list
x_refsource_BUGTRAQ
20030721 Microsoft Windows 2000 RPC DCOM Interface DOS AND Privilege Escalation Vulnerability
mailing-list
x_refsource_FULLDISC
CA-2003-23
third-party-advisory
x_refsource_CERT
oval:org.mitre.oval:def:494
vdb-entry
signature
x_refsource_OVAL
oval:org.mitre.oval:def:1118
vdb-entry
signature
x_refsource_OVAL
CA-2003-19
third-party-advisory
x_refsource_CERT
VU#326746
third-party-advisory
x_refsource_CERT-VN
MS03-039
vendor-advisory
x_refsource_MS
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now