ID CVE-2003-0110
Summary The Winsock Proxy service in Microsoft Proxy Server 2.0 and the Microsoft Firewall service in Internet Security and Acceleration (ISA) Server 2000 allow remote attackers to cause a denial of service (CPU consumption or packet storm) via a spoofed, malformed packet to UDP port 1745.
References
Vulnerable Configurations
  • cpe:2.3:a:microsoft:isa_server:2000:*:*:*:*:*:*:*
    cpe:2.3:a:microsoft:isa_server:2000:*:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:isa_server:2000:fp1:*:*:*:*:*:*
    cpe:2.3:a:microsoft:isa_server:2000:fp1:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:isa_server:2000:sp1:*:*:*:*:*:*
    cpe:2.3:a:microsoft:isa_server:2000:sp1:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:proxy_server:2.0:*:*:*:*:*:*:*
    cpe:2.3:a:microsoft:proxy_server:2.0:*:*:*:*:*:*:*
  • cpe:2.3:a:microsoft:proxy_server:2.0:sp1:*:*:*:*:*:*
    cpe:2.3:a:microsoft:proxy_server:2.0:sp1:*:*:*:*:*:*
CVSS
Base: 5.0 (as of 12-10-2018 - 21:32)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE NONE PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:N/A:P
oval via4
accepted 2007-11-13T12:01:15.559-05:00
class vulnerability
contributors
  • name Tiffany Bergeron
    organization The MITRE Corporation
  • name Jeff Cheng
    organization Opsware, Inc.
description The Winsock Proxy service in Microsoft Proxy Server 2.0 and the Microsoft Firewall service in Internet Security and Acceleration (ISA) Server 2000 allow remote attackers to cause a denial of service (CPU consumption or packet storm) via a spoofed, malformed packet to UDP port 1745.
family windows
id oval:org.mitre.oval:def:406
status accepted
submitted 2003-12-03T12:00:00.000-04:00
title Microsoft Winsock Proxy Service Denial of Service
version 3
refmap via4
bugtraq 20030409 iDEFENSE Security Advisory 04.09.03: Denial of Service in Microsoft Proxy Server and Internet Security and Acceleration Server 2000
misc http://www.idefense.com/advisory/04.09.03.txt
ms MS03-012
Last major update 12-10-2018 - 21:32
Published 05-05-2003 - 04:00
Back to Top