7.5 - MS03-051

Executive Summary

Informations
Name	MS03-051	First vendor Publication	N/A
Vendor	Microsoft	Last vendor Modification	N/A
Severity (Vendor)	N/A	Revision	N/A

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score	7.5	Attack Range	Network
Cvss Impact Score	6.4	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Buffer Overrun in Microsoft FrontPage Server Extensions Could Allow Code Execution (813360)

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:308

Oval ID:	oval:org.mitre.oval:def:308
Title:	MS FrontPage Server Extensions SmartHTML Denial of Service (Test 1)
Description:	Unknown vulnerability in the SmartHTML interpreter (shtml.dll) in Microsoft FrontPage Server Extensions 2000 and 2002, and Microsoft SharePoint Team Services 2002, allows remote attackers to cause a denial of service (response failure) via a certain request.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-0824	Version:	7
Platform(s):	Microsoft Windows 2000	Product(s):	Microsoft FrontPage Server Extensions 2000
Definition Synopsis:
Software section Windows 2000 (sp3 or earlier) is installed Windows 2000 is installed AND NOT Win2K/XP/2003 service pack 4 (or later) is installed AND the version of shtml.dll is less than 4.00.02.7523 AND NOT the patch q810217 is installed (Hotfix key) AND Configuration section FrontPage Server Extensions 2000 are enabled (2K, XP) AND SmartHTML interpreter is enabled

Definition Id: oval:org.mitre.oval:def:364

Oval ID:	oval:org.mitre.oval:def:364
Title:	MS FrontPage Server Extensions Chunked Encoded Request Buffer Overflow (Test 1)
Description:	Buffer overflow in the debug functionality in fp30reg.dll of Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers to execute arbitrary code via a crafted chunked encoded request.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-0822	Version:	7
Platform(s):	Microsoft Windows XP	Product(s):	Microsoft FrontPage Server Extensions 2000
Definition Synopsis:
Software section Windows XP (sp1 or earlier) is installed Windows XP is installed AND NOT Win2K/XP/2003 service pack 2 (or later) is installed AND a vulnerable version of fp30reg.dll or fp4areg.dll exists the version of fp4areg.dll is less than 4.0.02.7523 AND the version of fp30reg.dll is less than 4.00.02.7523 AND NOT the patch q810217 is installed (Hotfix key) AND Configuration section FrontPage Server Extensions 2000 are enabled (2K, XP)

Definition Id: oval:org.mitre.oval:def:366

Oval ID:	oval:org.mitre.oval:def:366
Title:	MS FrontPage Server Extensions Chunked Encoded Request Buffer Overflow (Test 2)
Description:	Buffer overflow in the debug functionality in fp30reg.dll of Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers to execute arbitrary code via a crafted chunked encoded request.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-0822	Version:	8
Platform(s):	Microsoft Windows NT Microsoft Windows 2000 Microsoft Windows XP	Product(s):	Microsoft FrontPage Server Extensions 2002
Definition Synopsis:
Software section Windows NT, 2000, or XP is installed Microsoft Windows NT is installed AND Windows 2000 is installed AND Windows XP is installed AND a vulnerable version of fp30reg.dll or fp5areg.dll exists the version of fp5areg.dll is less than 10.00.4205.0000 AND the version of fp30reg.dll is less than 10.00.4205.0000 AND NOT Win2K/XP/2003 service pack 2 (or later) is installed AND Configuration section FrontPage Server Extensions 2002 are enabled (NT, 2K, XP)

Definition Id: oval:org.mitre.oval:def:367

Oval ID:	oval:org.mitre.oval:def:367
Title:	MS FrontPage Server Extensions Chunked Encoded Request Buffer Overflow (Test 3)
Description:	Buffer overflow in the debug functionality in fp30reg.dll of Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers to execute arbitrary code via a crafted chunked encoded request.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-0822	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003	Product(s):	Microsoft SharePoint Team Services
Definition Synopsis:
Software section Windows 2000, XP, or 2003 is installed Windows 2000 is installed AND Windows XP is installed AND Windows Server 2003 is installed AND a vulnerable version of fp30reg.dll or fp5areg.dll exists the version of fp5areg.dll is less than 10.00.4205.0000 AND the version of fp30reg.dll is less than 10.00.4205.0000 AND NOT Win2K/XP/2003 service pack 2 (or later) is installed AND Configuration section FrontPage Server Extensions 2002 are enabled (NT, 2K, XP)

Definition Id: oval:org.mitre.oval:def:591

Oval ID:	oval:org.mitre.oval:def:591
Title:	MS FrontPage Server Extensions SmartHTML Denial of Service (Test 2)
Description:	Unknown vulnerability in the SmartHTML interpreter (shtml.dll) in Microsoft FrontPage Server Extensions 2000 and 2002, and Microsoft SharePoint Team Services 2002, allows remote attackers to cause a denial of service (response failure) via a certain request.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-0824	Version:	4
Platform(s):	Microsoft Windows NT	Product(s):	Microsoft FrontPage Server Extensions 2000
Definition Synopsis:
Software section Microsoft Windows NT is installed AND the version of shtml.dll is less than 4.00.02.7523 AND Configuration section FrontPage Server Extensions 2000 are enabled (WinNT) AND SmartHTML interpreter is enabled

Definition Id: oval:org.mitre.oval:def:606

Oval ID:	oval:org.mitre.oval:def:606
Title:	MS FrontPage Server Extensions SmartHTML Denial of Service (Test 3)
Description:	Unknown vulnerability in the SmartHTML interpreter (shtml.dll) in Microsoft FrontPage Server Extensions 2000 and 2002, and Microsoft SharePoint Team Services 2002, allows remote attackers to cause a denial of service (response failure) via a certain request.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-0824	Version:	8
Platform(s):	Microsoft Windows XP	Product(s):	Microsoft FrontPage Server Extensions 2000
Definition Synopsis:
Software section Windows XP (sp1 or earlier) is installed Windows XP is installed AND NOT Win2K/XP/2003 service pack 2 (or later) is installed AND the version of shtml.dll is less than 4.00.02.7523 AND NOT the patch q810217 is installed (Hotfix key) AND Configuration section FrontPage Server Extensions 2000 are enabled (2K, XP) AND SmartHTML interpreter is enabled

Definition Id: oval:org.mitre.oval:def:625

Oval ID:	oval:org.mitre.oval:def:625
Title:	MS FrontPage Server Extensions SmartHTML Denial of Service (Test 4)
Description:	Unknown vulnerability in the SmartHTML interpreter (shtml.dll) in Microsoft FrontPage Server Extensions 2000 and 2002, and Microsoft SharePoint Team Services 2002, allows remote attackers to cause a denial of service (response failure) via a certain request.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-0824	Version:	4
Platform(s):	Microsoft Windows NT Microsoft Windows 2000 Microsoft Windows XP	Product(s):	Microsoft FrontPage Server Extensions 2002
Definition Synopsis:
Software section Windows NT, 2000, or XP is installed Microsoft Windows NT is installed AND Windows 2000 is installed AND Windows XP is installed AND a vulnerable version of shtml.dll exists (FPSE 2002 or SPTS 2003) AND NOT Win2K/XP/2003 service pack 2 (or later) is installed AND Configuration section FrontPage Server Extensions 2002 are enabled (NT, 2K, XP) AND SmartHTML interpreter is enabled

Definition Id: oval:org.mitre.oval:def:699

Oval ID:	oval:org.mitre.oval:def:699
Title:	MS FrontPage Server Extensions Chunked Encoded Request Buffer Overflow (Test 4)
Description:	Buffer overflow in the debug functionality in fp30reg.dll of Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers to execute arbitrary code via a crafted chunked encoded request.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-0822	Version:	3
Platform(s):	Microsoft Windows NT	Product(s):	Microsoft FrontPage Server Extensions 2000
Definition Synopsis:
Software section Microsoft Windows NT is installed AND a vulnerable version of fp30reg.dll or fp4areg.dll exists the version of fp4areg.dll is less than 4.0.02.7523 AND the version of fp30reg.dll is less than 4.00.02.7523 AND Configuration section FrontPage Server Extensions 2000 are enabled (WinNT)

Definition Id: oval:org.mitre.oval:def:743

Oval ID:	oval:org.mitre.oval:def:743
Title:	MS FrontPage Server Extensions Chunked Encoded Request Buffer Overflow (Test 5)
Description:	Buffer overflow in the debug functionality in fp30reg.dll of Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers to execute arbitrary code via a crafted chunked encoded request.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-0822	Version:	6
Platform(s):	Microsoft Windows 2000	Product(s):	Microsoft FrontPage Server Extensions 2000
Definition Synopsis:
Software section Windows 2000 (sp3 or earlier) is installed Windows 2000 is installed AND NOT Win2K/XP/2003 service pack 4 (or later) is installed AND a vulnerable version of fp30reg.dll or fp4areg.dll exists the version of fp4areg.dll is less than 4.0.02.7523 AND the version of fp30reg.dll is less than 4.00.02.7523 AND NOT the patch q810217 is installed (Hotfix key) AND Configuration section FrontPage Server Extensions 2000 are enabled (2K, XP)

Definition Id: oval:org.mitre.oval:def:762

Oval ID:	oval:org.mitre.oval:def:762
Title:	MS FrontPage Server Extensions SmartHTML Denial of Service (Test 5)
Description:	Unknown vulnerability in the SmartHTML interpreter (shtml.dll) in Microsoft FrontPage Server Extensions 2000 and 2002, and Microsoft SharePoint Team Services 2002, allows remote attackers to cause a denial of service (response failure) via a certain request.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-0824	Version:	4
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003	Product(s):	Microsoft SharePoint Team Services
Definition Synopsis:
Software section Windows 2000, XP, or 2003 is installed Windows 2000 is installed AND Windows XP is installed AND Windows Server 2003 is installed AND a vulnerable version of shtml.dll exists (FPSE 2002 or SPTS 2003) AND NOT Win2K/XP/2003 service pack 2 (or later) is installed AND Configuration section SharePoint Team Services are enabled (2K, XP, 2003) AND SmartHTML interpreter is enabled

CPE : Common Platform Enumeration

Type	Description	Count
Application	Microsoft Frontpage Server Extensions cpe:2.3:a:microsoft:frontpage_server_extensions:2002:::::::* cpe:2.3:a:microsoft:frontpage_server_extensions:2000:::::::*	2
Application	Microsoft Sharepoint Team Services cpe:2.3:a:microsoft:sharepoint_team_services:2002:::::::*	1
Os	Microsoft Windows 2000 cpe:2.3:o:microsoft:windows_2000::sp3::::::* cpe:2.3:o:microsoft:windows_2000::sp2::::::*	2
Os	Microsoft Windows Xp cpe:2.3:o:microsoft:windows_xp::gold:professional::::: cpe:2.3:o:microsoft:windows_xp::sp1:home::::: cpe:2.3:o:microsoft:windows_xp::sp1:64-bit:::::	3

SAINT Exploits

Description	Link
FrontPage fp30reg.dll remote debug buffer overflow	More info here

ExploitDB Exploits

id	Description
2001-06-21	MS Visual Studio RAD Support Buffer Overflow Vulnerability (metasploit)
2010-07-25	Microsoft IIS ISAPI FrontPage fp30reg.dll Chunked Overflow
2003-11-13	MS Frontpage Server Extensions fp30reg.dll Exploit (MS03-051)

OpenVAS Exploits

Date	Description
2009-03-16	Name : Microsoft MS03-051 security check File : nvt/remote-MS03-051.nasl
2005-11-03	Name : IIS FrontPage DoS II File : nvt/frontpage_overflow.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
2952	Microsoft FrontPage Server Extensions (fp30reg.dll) Debug Function Chunked En... A remote overflow exists in Microsoft Frontpage Server Extensions (FPSE). The fp30reg.dll library fails to handle crafted chunked encoded data resulting in a boundary overflow. With a specially crafted request, an attacker can potentially execute arbitrary code with the same privileges as the web server.
2800	Microsoft FrontPage Server Extensions SmartHTML DoS Microsoft FrontPage contains a flaw that may allow a remote denial of service. The issue is triggered when malicious HTTP requests are passed to SmartHTML and will result in consumption of all CPU resources.

Snort® IPS/IDS

Date	Description
2014-01-10	Microsoft Frontpage server extension long host string overflow attempt RuleID : 6411 - Revision : 15 - Type : SERVER-OTHER
2014-01-10	Microsoft Frontpage server extension long host string overflow attempt RuleID : 6410 - Revision : 16 - Type : SERVER-OTHER
2014-01-10	Microsoft Frontpage server extension long host string overflow attempt RuleID : 6409 - Revision : 14 - Type : SERVER-OTHER
2014-01-10	Microsoft Frontpage rad fp30reg.dll access RuleID : 1248-community - Revision : 31 - Type : SERVER-OTHER
2014-01-10	Microsoft Frontpage rad fp30reg.dll access RuleID : 1248 - Revision : 31 - Type : SERVER-OTHER

Metasploit Database

id	Description
2003-11-11	MS03-051 Microsoft IIS ISAPI FrontPage fp30reg.dll Chunked Overflow

Nessus® Vulnerability Scanner

Date	Description
2003-11-12	Name : It is possible to execute code on the remote host through FrontPage. File : frontpage_chunked_overflow.nasl - Type : ACT_ATTACK

Alert History

If you want to see full details history, please login or register.

Date	Informations
2020-05-23 13:17:12	Multiple Updates
2016-03-13 09:23:43	Multiple Updates
2016-03-13 05:23:41	Multiple Updates
2014-02-17 11:44:56	Multiple Updates
2014-01-19 21:29:50	Multiple Updates
2013-05-11 12:21:31	Multiple Updates

Global Informations

Type	Count
Oval ID(s)	10
CPE ID(s)	8
Saint Exploit(s)	1
osvdb(s)	2
ExploitDB Exploit(s)	3
Metasploit Exploit(s)	1
Openvas Exploit(s)	2
Snort® Rule(s)	5
Nessus® Exploit(s)	1

	Related
10	HPSBST02394 SSR...
10	HPSBST02386 SSR...
10	HPSBST02379 SSR...
10	HPSBST02360 SSR...
9.4	HPSBST02350 SSR...
9.3	HPSBST02397 SSR...
9.3	HPSBST02372 SSR...
9.3	HPSBST02344 SSR...
9.3	HPSBST02336 SSR...
7.5	CVE-2003-0822
5	CVE-2003-0824
0	HPSBST02329 SSR...
0	HPSBST02320 SSR...
0	HPSBST02314 SSR...
0	HPSBST02304 SSR...
0	HPSBST02299 SSR...
0	HPSBST02291 SSR...
0	HPSBST02280 SSR...
0	HPSBST02260 SSR...
0	HPSBST02255 SSR...
0	HPSBST02243 SSR...
0	HPSBST02231 SSR...
0	HPSBST02214 SSR...
0	HPSBST02208 SSR...
0	HPSBST02206 SSR...
0	HPSBST02194 SSR...
0	HPSBST02184 SSR...
0	HPSBST02180 SSR...
0	HPSBST02161 SSR...
0	HPSBST02160 SSR...
0	HPSBST02134 SSR...
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 31 more Alert(s)

7.5 - MS03-051

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

OVAL Definitions

CPE : Common Platform Enumeration

SAINT Exploits

ExploitDB Exploits

OpenVAS Exploits

Open Source Vulnerability Database (OSVDB)

Snort® IPS/IDS

Metasploit Database

Nessus® Vulnerability Scanner

Alert History

Global Informations

Open Standards

Other Databases

COMPANY

STANDARDS

RECENT POSTS

MENU