Vulnerabilities > CVE-2002-1140 - Buffer Overflow vulnerability in Microsoft Services 3.0

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

microsoft

NVD

Published: 2002-10-11

Updated: 2018-10-12

Summary

The Sun Microsystems RPC library Services for Unix 3.0 Interix SD, as implemented on Microsoft Windows NT4, 2000, and XP, allows remote attackers to cause a denial of service (service hang) via malformed packet fragments, aka "Improper parameter size check leading to denial of service."

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft Services 3.0	1

References

http://www.iss.net/security_center/static/10258.php
http://www.securityfocus.com/bid/5879
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-057