Executive Summary
| Informations | |||
|---|---|---|---|
| Name | MS04-001 | First vendor Publication | N/A |
| Vendor | Microsoft | Last vendor Modification | N/A |
| Severity (Vendor) | N/A | Revision | N/A |
Security-Database Scoring CVSS v3
| Cvss vector : N/A | |||
|---|---|---|---|
| Overall CVSS Score | NA | ||
| Base Score | NA | Environmental Score | NA |
| impact SubScore | NA | Temporal Score | NA |
| Exploitabality Sub Score | NA | ||
| Calculate full CVSS 3.0 Vectors scores | |||
Security-Database Scoring CVSS v2
| Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
|---|---|---|---|
| Cvss Base Score | 10 | Attack Range | Network |
| Cvss Impact Score | 10 | Attack Complexity | Low |
| Cvss Expoit Score | 10 | Authentication | None Required |
| Calculate full CVSS 2.0 Vectors scores | |||
Detail
| Vulnerability in Microsoft Internet Security and Acceleration Server 2000 H.323 Filter Could Allow Remote Code Execution (816458) |
CWE : Common Weakness Enumeration
| % | Id | Name |
|---|---|---|
| 100 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
OVAL Definitions
| Definition Id: oval:org.mitre.oval:def:478 | |||
| Oval ID: | oval:org.mitre.oval:def:478 | ||
| Title: | MS Internet Security and Acceleration Server H.323 Buffer Overflow | ||
| Description: | Buffer overflow in the H.323 filter of Microsoft Internet Security and Acceleration Server 2000 allows remote attackers to execute arbitrary code in the Microsoft Firewall Service via certain H.323 traffic, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol. | ||
| Family: | windows | Class: | vulnerability |
| Reference(s): | CVE-2003-0819 | Version: | 3 |
| Platform(s): | Microsoft Windows 2000 Microsoft Windows Server 2003 | Product(s): | Microsoft Internet Security and Acceleration Server 2000 |
| Definition Synopsis: | |||
CPE : Common Platform Enumeration
| Type | Description | Count |
|---|---|---|
| Application | 2 |
OpenVAS Exploits
| Date | Description |
|---|---|
| 2005-11-03 | Name : Vulnerability in Microsoft ISA Server 2000 H.323 Filter(816458) File : nvt/smb_nt_ms04-001.nasl |
Open Source Vulnerability Database (OSVDB)
| Id | Description |
|---|---|
| 11712 | Microsoft ISA Server 2000 H.323 Filter Overflow |
Nessus® Vulnerability Scanner
| Date | Description |
|---|---|
| 2004-01-14 | Name : Arbitrary code can be executed on the remote host. File : smb_nt_ms04-001.nasl - Type : ACT_GATHER_INFO |
Alert History
| Date | Informations |
|---|---|
| 2014-02-17 11:44:57 |
|
| 2013-05-11 12:21:32 |
|
