Vulnerability Details : CVE-2003-0818

Multiple integer overflows in Microsoft ASN.1 library (MSASN1.DLL), as used in LSASS.EXE, CRYPT32.DLL, and other Microsoft executables and libraries on Windows NT 4.0, 2000, and XP, allow remote attackers to execute arbitrary code via ASN.1 BER encodings with (1) very large length fields that cause arbitrary heap data to be overwritten, or (2) modified bit strings.

Vulnerability category: Execute code

Published 2004-03-03 05:00:00

Updated 2019-04-30 14:27:14

Source MITRE

View at NVD, CVE.org

At least one public exploit which can be used to exploit this vulnerability exists!

Exploit prediction scoring system (EPSS) score for CVE-2003-0818

Probability of exploitation activity in the next 30 days: 97.37%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 100 % EPSS Score History EPSS FAQ

Metasploit modules for CVE-2003-0818

MS04-007 Microsoft ASN.1 Library Bitstring Heap Overflow

Disclosure Date : 2004-02-10

exploit/windows/smb/ms04_007_killbill

This is an exploit for a previously undisclosed vulnerability in the bit string decoding code in the Microsoft ASN.1 library. This vulnerability is not related to the bit string vulnerability described in eEye advisory AD20040210-2. Both vulnerabilities were fixed in the MS04-007 patch. Windows 2000 SP4 Rollup 1 also patches this vulnerability. You are only allowed one attempt with this vulnerability. If the payload fails to execute, the LSASS system service will crash and the target system will automatically reboot itself in 60 seconds. If the payload succeeds, the system will no longer be able to process authentication requests, denying all attempts to login through SMB or at the console. A reboot is required to restore proper functioning of an exploited system. This exploit has been successfully tested with the win32/*/reverse_tcp payloads, ho

More information

CVSS scores for CVE-2003-0818

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	[email protected]
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

References for CVE-2003-0818

Products affected by CVE-2003-0818

Microsoft » Windows Nt » Version: 4.0 Terminal Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:*:terminal_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:*:server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Workstation Edition
cpe:2.3:o:microsoft:windows_nt:4.0:*:workstation:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP2 Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP1 Terminal Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:terminal_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP3 Workstation Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:workstation:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP4 Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP6 Terminal Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:terminal_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP2 Terminal Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:terminal_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP2 Workstation Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:workstation:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP3 Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP6 Workstation Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:workstation:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update Sp6a Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update Sp6a Workstation Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:workstation:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP1 Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP4 Workstation Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:workstation:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP5 Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP5 Terminal Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:terminal_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP1 Workstation Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:workstation:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP3 Terminal Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:terminal_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP4 Terminal Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:terminal_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP5 Workstation Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:workstation:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP6 Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:server:*:*:*:*:*
Matching versions
Microsoft » Windows 2000
cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
Matching versions
Microsoft » Windows 2000 » Update SP2
cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:*:*:*:*
Matching versions
Microsoft » Windows 2000 » Update SP3
cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:*:*:*:*
Matching versions
Microsoft » Windows 2000 » Update SP1
cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:*:*:*:*
Matching versions
Microsoft » Windows Xp » Update Gold Professional Edition
cpe:2.3:o:microsoft:windows_xp:*:gold:professional:*:*:*:*:*
Matching versions
Microsoft » Windows Xp » Update SP1 Home Edition
cpe:2.3:o:microsoft:windows_xp:*:sp1:home:*:*:*:*:*
Matching versions
Microsoft » Windows Xp » 64-bit Edition
cpe:2.3:o:microsoft:windows_xp:*:*:64-bit:*:*:*:*:*
Matching versions
Microsoft » Windows Xp » Update SP1 64-bit Edition
cpe:2.3:o:microsoft:windows_xp:*:sp1:64-bit:*:*:*:*:*
Matching versions
Microsoft » Windows Xp » Home Edition
cpe:2.3:o:microsoft:windows_xp:*:*:home:*:*:*:*:*
Matching versions
Microsoft » Windows 2003 Server » Version: WEB
cpe:2.3:o:microsoft:windows_2003_server:web:*:*:*:*:*:*:*
Matching versions
Microsoft » Windows 2003 Server » Version: Enterprise 64-bit
cpe:2.3:o:microsoft:windows_2003_server:enterprise_64-bit:*:*:*:*:*:*:*
Matching versions
Microsoft » Windows 2003 Server » Version: R2 64-bit Edition
cpe:2.3:o:microsoft:windows_2003_server:r2:*:64-bit:*:*:*:*:*
Matching versions
Microsoft » Windows 2003 Server » Version: Enterprise 64-bit Edition
cpe:2.3:o:microsoft:windows_2003_server:enterprise:*:64-bit:*:*:*:*:*
Matching versions
Microsoft » Windows 2003 Server » Version: R2 Datacenter 64-bit Edition
cpe:2.3:o:microsoft:windows_2003_server:r2:*:datacenter_64-bit:*:*:*:*:*
Matching versions
Microsoft » Windows 2003 Server » Version: Standard 64-bit Edition
cpe:2.3:o:microsoft:windows_2003_server:standard:*:64-bit:*:*:*:*:*
Matching versions

This web site uses cookies for managing your session and website analytics (Google analytics) purposes as described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!