National Cyber-Alert System
Vulnerability Summary for CVE-2003-0112
Original release date:05/12/2003
Last revised:09/10/2008
Source:
US-CERT/NIST
Overview
Buffer overflow in Windows Kernel allows local users to gain privileges by causing certain error messages to be passed to a debugger.
Impact
CVSS Severity (version 2.0):
Impact Subscore:
6.4
Exploitability Subscore:
3.9
CVSS Version 2 Metrics:
Access Vector: Locally exploitable
Access Complexity: Low
Authentication: Not required to exploit
Impact Type:Provides unauthorized access, Allows partial confidentiality, integrity, and availability violation; Allows unauthorized disclosure of information; Allows disruption of service
References to Advisories, Solutions, and Tools
By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.
US-CERT Vulnerability Note: VU#446338
Name: VU#446338
External Source: BID
Name: 7370
Type: Advisory; Patch Information
External Source: MS
Name: MS03-013
Type: Advisory; Patch Information
External Source: XF
Name: win-kernel-lpcrequestwaitreplyport-bo(11803)
US Government Resource: oval:org.mitre.oval:def:779
Name: oval:org.mitre.oval:def:779
Type: Tool Signature
US Government Resource: oval:org.mitre.oval:def:3145
Name: oval:org.mitre.oval:def:3145
Type: Tool Signature
US Government Resource: oval:org.mitre.oval:def:262
Name: oval:org.mitre.oval:def:262
Type: Tool Signature
US Government Resource: oval:org.mitre.oval:def:2265
Name: oval:org.mitre.oval:def:2265
Type: Tool Signature
US Government Resource: oval:org.mitre.oval:def:2022
Name: oval:org.mitre.oval:def:2022
Type: Tool Signature
US Government Resource: oval:org.mitre.oval:def:142
Name: oval:org.mitre.oval:def:142
Type: Tool Signature
US Government Resource: oval:org.mitre.oval:def:1264
Name: oval:org.mitre.oval:def:1264
Type: Tool Signature