CVE-2003-0818
CVE-2003-0818
Multiple integer overflows in Microsoft ASN.1 library (MSASN1.DLL), as used in LSASS.EXE, CRYPT32.DLL, and other Microsoft executables and libraries on Windows NT 4.0, 2000, and XP, allow remote attackers to execute arbitrary code via ASN.1 BER encodings with (1) very large length fields that cause arbitrary heap data to be overwritten, or (2) modified bit strings.
Productos afectados
n/a · n/aPoCs públicas encontradas — 3
exploitdbwww.exploit-db.com/exploits/153no verificadoexploitdbwww.exploit-db.com/exploits/16377no verificadoexploitdbwww.exploit-db.com/exploits/3022no verificado⚠ Recursos públicos, para evaluar la exposición de sistemas que controlas o estás autorizado a probar. Prueba solo con autorización.
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
http://marc.info/?l=bugtraq&m=107643836125615&w=2http://marc.info/?l=bugtraq&m=107643892224825&w=2http://marc.info/?l=ntbugtraq&m=107650972617367&w=2http://marc.info/?l=ntbugtraq&m=107650972723080&w=2https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-007https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A653https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A796https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A797https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A799http://www.kb.cert.org/vuls/id/216324http://www.kb.cert.org/vuls/id/583108http://www.us-cert.gov/cas/techalerts/TA04-041A.html