CVE-2003-0525

The getCanonicalPath function in Windows NT 4.0 may free memory that it does not own and cause heap corruption, which allows attackers to cause a denial of service (crash) via requests that cause a long file name to be passed to getCanonicalPath, as demonstrated on the IBM JVM using a long string to the java.io.getCanonicalPath Java method.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://www.atstake.com/research/advisories/2003/a072303-1.txt	Vendor Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-029
https://exchange.xforce.ibmcloud.com/vulnerabilities/12701
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A319
http://www.atstake.com/research/advisories/2003/a072303-1.txt	Vendor Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-029
https://exchange.xforce.ibmcloud.com/vulnerabilities/12701
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A319

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:microsoft:windows_nt:4.0::enterprise_server:::::
	cpe:2.3:o:microsoft:windows_nt:4.0::server:::::
	cpe:2.3:o:microsoft:windows_nt:4.0::terminal_server:::::
	cpe:2.3:o:microsoft:windows_nt:4.0:sp1:enterprise_server:::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:sp1:server:::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:sp1:terminal_server:::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:sp2:enterprise_server:::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:sp2:server:::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:sp2:terminal_server:::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:sp3:enterprise_server:::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:sp3:server:::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:sp3:terminal_server:::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:sp4:enterprise_server:::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:sp4:server:::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:sp4:terminal_server:::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:sp5:enterprise_server:::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:sp5:server:::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:sp5:terminal_server:::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:sp6:enterprise_server:::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:sp6:server:::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:sp6:terminal_server:::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:enterprise_server:::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:server:::::*

History

20 Nov 2024, 23:44

Type	Values Removed	Values Added
References	~~() http://www.atstake.com/research/advisories/2003/a072303-1.txt - Vendor Advisory~~	() http://www.atstake.com/research/advisories/2003/a072303-1.txt - Vendor Advisory
References	~~() https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-029 -~~	() https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-029 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/12701 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/12701 -
References	~~() https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A319 -~~	() https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A319 -

Information

Published : 2003-08-27 04:00

Updated : 2024-11-20 23:44

NVD link : CVE-2003-0525

Mitre link : CVE-2003-0525

CVE.ORG link : CVE-2003-0525

JSON object : View

Products Affected

microsoft

windows_nt

CWE

NVD-CWE-Other

5.0 /10