7.5 - CVE-2003-0822

Executive Summary

Informations
Name	CVE-2003-0822	First vendor Publication	2003-12-15
Vendor	Cve	Last vendor Modification	2024-11-20

Security-Database Scoring CVSS v3

Cvss vector : N/A
Overall CVSS Score	NA
Base Score	NA	Environmental Score	NA
impact SubScore	NA	Temporal Score	NA
Exploitabality Sub Score	NA

Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:P/I:P/A:P)
Cvss Base Score	7.5	Attack Range	Network
Cvss Impact Score	6.4	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Buffer overflow in the debug functionality in fp30reg.dll of Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers to execute arbitrary code via a crafted chunked encoded request.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0822

OVAL Definitions

Definition Id: oval:org.mitre.oval:def:364

Oval ID:	oval:org.mitre.oval:def:364
Title:	MS FrontPage Server Extensions Chunked Encoded Request Buffer Overflow (Test 1)
Description:	Buffer overflow in the debug functionality in fp30reg.dll of Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers to execute arbitrary code via a crafted chunked encoded request.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-0822	Version:	7
Platform(s):	Microsoft Windows XP	Product(s):	Microsoft FrontPage Server Extensions 2000
Definition Synopsis:
Software section Windows XP (sp1 or earlier) is installed Windows XP is installed AND NOT Win2K/XP/2003 service pack 2 (or later) is installed AND a vulnerable version of fp30reg.dll or fp4areg.dll exists the version of fp4areg.dll is less than 4.0.02.7523 AND the version of fp30reg.dll is less than 4.00.02.7523 AND NOT the patch q810217 is installed (Hotfix key) AND Configuration section FrontPage Server Extensions 2000 are enabled (2K, XP)

Definition Id: oval:org.mitre.oval:def:366

Oval ID:	oval:org.mitre.oval:def:366
Title:	MS FrontPage Server Extensions Chunked Encoded Request Buffer Overflow (Test 2)
Description:	Buffer overflow in the debug functionality in fp30reg.dll of Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers to execute arbitrary code via a crafted chunked encoded request.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-0822	Version:	8
Platform(s):	Microsoft Windows NT Microsoft Windows 2000 Microsoft Windows XP	Product(s):	Microsoft FrontPage Server Extensions 2002
Definition Synopsis:
Software section Windows NT, 2000, or XP is installed Microsoft Windows NT is installed AND Windows 2000 is installed AND Windows XP is installed AND a vulnerable version of fp30reg.dll or fp5areg.dll exists the version of fp5areg.dll is less than 10.00.4205.0000 AND the version of fp30reg.dll is less than 10.00.4205.0000 AND NOT Win2K/XP/2003 service pack 2 (or later) is installed AND Configuration section FrontPage Server Extensions 2002 are enabled (NT, 2K, XP)

Definition Id: oval:org.mitre.oval:def:367

Oval ID:	oval:org.mitre.oval:def:367
Title:	MS FrontPage Server Extensions Chunked Encoded Request Buffer Overflow (Test 3)
Description:	Buffer overflow in the debug functionality in fp30reg.dll of Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers to execute arbitrary code via a crafted chunked encoded request.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-0822	Version:	7
Platform(s):	Microsoft Windows 2000 Microsoft Windows XP Microsoft Windows Server 2003	Product(s):	Microsoft SharePoint Team Services
Definition Synopsis:
Software section Windows 2000, XP, or 2003 is installed Windows 2000 is installed AND Windows XP is installed AND Windows Server 2003 is installed AND a vulnerable version of fp30reg.dll or fp5areg.dll exists the version of fp5areg.dll is less than 10.00.4205.0000 AND the version of fp30reg.dll is less than 10.00.4205.0000 AND NOT Win2K/XP/2003 service pack 2 (or later) is installed AND Configuration section FrontPage Server Extensions 2002 are enabled (NT, 2K, XP)

Definition Id: oval:org.mitre.oval:def:699

Oval ID:	oval:org.mitre.oval:def:699
Title:	MS FrontPage Server Extensions Chunked Encoded Request Buffer Overflow (Test 4)
Description:	Buffer overflow in the debug functionality in fp30reg.dll of Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers to execute arbitrary code via a crafted chunked encoded request.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-0822	Version:	3
Platform(s):	Microsoft Windows NT	Product(s):	Microsoft FrontPage Server Extensions 2000
Definition Synopsis:
Software section Microsoft Windows NT is installed AND a vulnerable version of fp30reg.dll or fp4areg.dll exists the version of fp4areg.dll is less than 4.0.02.7523 AND the version of fp30reg.dll is less than 4.00.02.7523 AND Configuration section FrontPage Server Extensions 2000 are enabled (WinNT)

Definition Id: oval:org.mitre.oval:def:743

Oval ID:	oval:org.mitre.oval:def:743
Title:	MS FrontPage Server Extensions Chunked Encoded Request Buffer Overflow (Test 5)
Description:	Buffer overflow in the debug functionality in fp30reg.dll of Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers to execute arbitrary code via a crafted chunked encoded request.
Family:	windows	Class:	vulnerability
Reference(s):	CVE-2003-0822	Version:	6
Platform(s):	Microsoft Windows 2000	Product(s):	Microsoft FrontPage Server Extensions 2000
Definition Synopsis:
Software section Windows 2000 (sp3 or earlier) is installed Windows 2000 is installed AND NOT Win2K/XP/2003 service pack 4 (or later) is installed AND a vulnerable version of fp30reg.dll or fp4areg.dll exists the version of fp4areg.dll is less than 4.0.02.7523 AND the version of fp30reg.dll is less than 4.00.02.7523 AND NOT the patch q810217 is installed (Hotfix key) AND Configuration section FrontPage Server Extensions 2000 are enabled (2K, XP)

CPE : Common Platform Enumeration

Type	Description	Count
Application	Microsoft Frontpage Server Extensions cpe:2.3:a:microsoft:frontpage_server_extensions:2002:::::::* cpe:2.3:a:microsoft:frontpage_server_extensions:2000:::::::*	2
Application	Microsoft Sharepoint Team Services cpe:2.3:a:microsoft:sharepoint_team_services:2002:::::::*	1
Os	Microsoft Windows 2000 cpe:2.3:o:microsoft:windows_2000::sp3::::::* cpe:2.3:o:microsoft:windows_2000::sp2::::::*	2
Os	Microsoft Windows Xp cpe:2.3:o:microsoft:windows_xp::gold:professional::::: cpe:2.3:o:microsoft:windows_xp::sp1:home::::: cpe:2.3:o:microsoft:windows_xp::sp1:64-bit:::::	3

SAINT Exploits

Description	Link
FrontPage fp30reg.dll remote debug buffer overflow	More info here

ExploitDB Exploits

id	Description
2001-06-21	MS Visual Studio RAD Support Buffer Overflow Vulnerability (metasploit)
2010-07-25	Microsoft IIS ISAPI FrontPage fp30reg.dll Chunked Overflow
2003-11-13	MS Frontpage Server Extensions fp30reg.dll Exploit (MS03-051)

OpenVAS Exploits

Date	Description
2009-03-16	Name : Microsoft MS03-051 security check File : nvt/remote-MS03-051.nasl
2005-11-03	Name : IIS FrontPage DoS II File : nvt/frontpage_overflow.nasl

Open Source Vulnerability Database (OSVDB)

Id	Description
2952	Microsoft FrontPage Server Extensions (fp30reg.dll) Debug Function Chunked En... A remote overflow exists in Microsoft Frontpage Server Extensions (FPSE). The fp30reg.dll library fails to handle crafted chunked encoded data resulting in a boundary overflow. With a specially crafted request, an attacker can potentially execute arbitrary code with the same privileges as the web server.

Snort® IPS/IDS

Date	Description
2014-01-10	Microsoft Frontpage server extension long host string overflow attempt RuleID : 6411 - Revision : 15 - Type : SERVER-OTHER
2014-01-10	Microsoft Frontpage server extension long host string overflow attempt RuleID : 6410 - Revision : 16 - Type : SERVER-OTHER
2014-01-10	Microsoft Frontpage server extension long host string overflow attempt RuleID : 6409 - Revision : 14 - Type : SERVER-OTHER
2014-01-10	Microsoft Frontpage rad fp30reg.dll access RuleID : 1248-community - Revision : 31 - Type : SERVER-OTHER
2014-01-10	Microsoft Frontpage rad fp30reg.dll access RuleID : 1248 - Revision : 31 - Type : SERVER-OTHER

Nessus® Vulnerability Scanner

Date	Description
2003-11-12	Name : It is possible to execute code on the remote host through FrontPage. File : frontpage_chunked_overflow.nasl - Type : ACT_ATTACK

Sources (Detail)

http://marc.info/?l=bugtraq&m=106865318904055&w=2
http://marc.info/?l=ntbugtraq&m=106862654906759&w=2
http://secunia.com/advisories/10195
http://www.kb.cert.org/vuls/id/279156
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03...
https://exchange.xforce.ibmcloud.com/vulnerabilities/13674
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.ova...

Source	Url

Alert History

If you want to see full details history, please login or register.

Date	Informations
2024-11-28 23:23:18	Multiple Updates
2024-11-28 12:05:44	Multiple Updates
2021-05-04 12:02:08	Multiple Updates
2021-04-22 01:02:16	Multiple Updates
2020-05-23 13:16:44	Multiple Updates
2020-05-23 00:15:30	Multiple Updates
2019-04-30 21:19:18	Multiple Updates
2018-10-13 00:22:27	Multiple Updates
2017-10-11 09:23:18	Multiple Updates
2017-07-11 12:01:18	Multiple Updates
2016-10-18 12:01:13	Multiple Updates
2016-04-26 12:37:38	Multiple Updates
2016-03-13 09:23:43	Multiple Updates
2016-03-13 05:23:41	Multiple Updates
2014-02-17 10:26:36	Multiple Updates
2014-01-19 21:22:01	Multiple Updates
2013-05-11 11:53:04	Multiple Updates

Global Informations

Type	Count
Oval ID(s)	5
CPE ID(s)	8
Sources(s)	11
Saint Exploit(s)	1
osvdb(s)	1
ExploitDB Exploit(s)	3
Openvas Exploit(s)	2
Snort® Rule(s)	5
Nessus® Exploit(s)	1

	Related
7.5	MS03-051
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)