CVE-2002-1561

CVE Database · CVE-2002-1561

CVE-2002-1561

· N/AModified

CVSS v3.1

N/A

EPSS

38.00%

Published

Apr 2, 2003

Modified

Apr 15, 2026

Public PoC / Exploit (4)

All weaponized →

Exploit-DBMicrosoft Windows XP/2000/NT 4.0 - RPC Service Denial of Service (1)Exploit-DBMicrosoft Windows XP/2000/NT 4.0 - RPC Service Denial of Service (2)Exploit-DBMicrosoft Windows XP/2000/NT 4.0 - RPC Service Denial of Service (3)Exploit-DBMicrosoft Windows XP/2000/NT 4.0 - RPC Service Denial of Service (4)

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The RPC component in Windows 2000, Windows NT 4.0, and Windows XP allows remote attackers to cause a denial of service (disabled RPC service) via a malformed packet to the RPC Endpoint Mapper at TCP port 135, which triggers a null pointer dereference.

Affected Products (45)

microsoft · windows_2000vulnerable

microsoft · windows_2000_terminal_servicesvulnerable

microsoft · windows_ntvulnerable

microsoft · windows_nt

References (10)

http://www.kb.cert.org/vuls/id/261537

US Government Resource

http://www.securityfocus.com/archive/1/296114/2002-10-14/2002-10-20/0

Vendor Advisory

http://www.securityfocus.com/bid/6005

ExploitPatchVendor Advisory

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-010

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A59

http://www.kb.cert.org/vuls/id/261537

US Government Resource

http://www.securityfocus.com/archive/1/296114/2002-10-14/2002-10-20/0

KEV Catalog EPSS Scores Vendors All CVEs