CVE-2003-0719

Published: Jun 1, 2004Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Buffer overflow in the Private Communications Transport (PCT) protocol implementation in the Microsoft SSL library, as used in Microsoft Windows NT 4.0 SP6a, 2000 SP2 through SP4, XP SP1, Server 2003, NetMeeting, Windows 98, and Windows ME, allows remote attackers to execute arbitrary code via PCT 1.0 handshake packets.

Affected (8)

Products: Microsoft: Netmeeting, Windows 2000, Windows 2003 Server, Windows 98, Windows Me, Windows Nt, Windows Xp

7 products

Windows 2003 Server

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Microsoft Netmeeting	All versions

Configuration B

7 vulnerable

Vulnerable Software	Affected Versions
Microsoft Windows 2000	All versions
Microsoft Windows 2000	All versions
Microsoft Windows 2003 Server	Version r2
Microsoft Windows 98	All versions
Microsoft Windows Me	All versions
Microsoft Windows Nt	Version 4.0 sp6a
Microsoft Windows Xp	All versions

References (18)

http://www.kb.cert.org/vuls/id/586540

Source: cve@mitre.org

PatchThird Party AdvisoryUS Government Resource

http://www.securityfocus.com/archive/1/361836

Source: cve@mitre.org

PatchVendor Advisory

http://www.us-cert.gov/cas/techalerts/TA04-104A.html

Source: cve@mitre.org

Third Party AdvisoryUS Government Resource

http://xforce.iss.net/xforce/alerts/id/168

Source: cve@mitre.org

PatchVendor Advisory

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-011

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1093

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A889

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A903

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A951

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/586540

Source: af854a3a-2127-422b-91ae-364da2661108

PatchThird Party AdvisoryUS Government Resource

http://www.securityfocus.com/archive/1/361836

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://www.us-cert.gov/cas/techalerts/TA04-104A.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryUS Government Resource

http://xforce.iss.net/xforce/alerts/id/168

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-011

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1093

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A889

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A903

Source: af854a3a-2127-422b-91ae-364da2661108

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A951

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.