National Cyber-Alert System
Vulnerability Summary: CVE-2003-0109
Orirignal release date: 2003-03-31
Source: US-CERT/NIST

Overview

    Buffer overflow in ntdll.dll on Microsoft Windows NT 4.0, Windows NT 4.0 Terminal Server Edition, Windows 2000, and Windows XP allows remote attackers to execute arbitrary code, as demonstrated via a WebDAV request to IIS 5.0.

Impact

    CVSS Severity: 7 (High)
    Range: remote
    Authentication: input buffer="1"
    Impact Type: sec_prot other="1"

Reference to Advisories, Solutions, and Tools

Vulnerable Software and Vendor

    Windows 2000 (Microsoft)

Technical Details

CVE Standard Vulnerability Entry: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0109