CVE-2003-0352

CVE Database · CVE-2003-0352

CVE-2003-0352

· N/AModified

CVSS v3.1

N/A

EPSS

98.48%

Published

Aug 18, 2003

Modified

Apr 15, 2026

Public PoC / Exploit (4)

All weaponized →

Exploit-DBMicrosoft RPC DCOM Interface - Remote Overflow (MS03-026) (Metasploit)Exploit-DBMicrosoft Windows - 'RPC DCOM' Long Filename Overflow (MS03-026)Exploit-DBMicrosoft Windows - DCOM RPC Interface Buffer Overrun TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Buffer overflow in a certain DCOM interface for RPC in Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary code via a malformed message, as exploited by the Blaster/MSblast/LovSAN and Nachi/Welchia worms.

Affected Products (48)

microsoft · windows_2000vulnerable

microsoft · windows_2003_servervulnerable

References (20)

http://lists.grok.org.uk/pipermail/full-disclosure/2003-July/007079.html

http://lists.grok.org.uk/pipermail/full-disclosure/2003-July/007357.html

http://marc.info/?l=bugtraq&m=105838687731618&w=2

http://marc.info/?l=bugtraq&m=105914789527294&w=2

http://www.cert.org/advisories/CA-2003-16.html

US Government Resource

http://www.cert.org/advisories/CA-2003-19.html

US Government Resource

http://www.kb.cert.org/vuls/id/568148

US Government Resource

http://www.securityfocus.com/bid/8205

ExploitPatchVendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs

microsoft · windows_2003_servervulnerable

microsoft · windows_ntvulnerable

microsoft · windows_xpvulnerable