Vulnerabilities > CVE-2003-0306 - Local Security vulnerability in Windows XP Gold
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Buffer overflow in EXPLORER.EXE on Windows XP allows attackers to execute arbitrary code as the XP user via a desktop.ini file with a long .ShellClassInfo parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 1 |
Exploit-Db
description | MS Windows XP (explorer.exe) Buffer Overflow Exploit. CVE-2003-0306. Local exploit for windows platform |
id | EDB-ID:32 |
last seen | 2016-01-31 |
modified | 2003-05-21 |
published | 2003-05-21 |
reporter | einstein |
source | https://www.exploit-db.com/download/32/ |
title | Microsoft Windows XP explorer.exe - Buffer Overflow Exploit |
Nessus
NASL family | Windows : Microsoft Bulletins |
NASL id | SMB_NT_MS03-027.NASL |
description | The remote host is running a version of Windows that has a flaw in its shell. An attacker could exploit it by creating a malicious Desktop.ini file, putting it on a shared folder and waiting for someone to browse it. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 11792 |
published | 2003-07-17 |
reporter | This script is Copyright (C) 2003-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/11792 |
title | MS03-027: Buffer overrun in Windows Shell (821557) |
code |
|
Oval
accepted | 2011-05-16T04:02:42.419-04:00 | ||||||||||||||||||||
class | vulnerability | ||||||||||||||||||||
contributors |
| ||||||||||||||||||||
description | Buffer overflow in EXPLORER.EXE on Windows XP allows attackers to execute arbitrary code as the XP user via a desktop.ini file with a long .ShellClassInfo parameter. | ||||||||||||||||||||
family | windows | ||||||||||||||||||||
id | oval:org.mitre.oval:def:3095 | ||||||||||||||||||||
status | accepted | ||||||||||||||||||||
submitted | 2004-07-14T12:00:00.000-04:00 | ||||||||||||||||||||
title | WinXP Explorer Buffer Overflow | ||||||||||||||||||||
version | 70 |
References
- http://marc.info/?l=bugtraq&m=105284486526310&w=2
- http://marc.info/?l=bugtraq&m=105301349925036&w=2
- http://marc.info/?l=vuln-dev&m=105241032526289&w=2
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-027
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3095