CVE-2003-0907 : Help and Support Center in Microsoft Windows XP SP1 does not properly validate H

Help and Support Center in Microsoft Windows XP SP1 does not properly validate HCP URLs, which allows remote attackers to execute arbitrary code via quotation marks in an hcp:// URL, which are not quoted when constructing the argument list to HelpCtr.exe.

Published 2004-06-01 04:00:00

Updated 2025-04-03 01:03:51

Source MITRE

View at NVD, CVE.org

Vulnerability category: Execute code

Products affected by CVE-2003-0907

Microsoft » Windows Xp » Version: N/A
cpe:2.3:o:microsoft:windows_xp:-:*:*:*:*:*:*:*
Matching versions
Microsoft » Windows Server 2003 » Version: N/A
cpe:2.3:o:microsoft:windows_server_2003:-:*:*:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2003-0907

EPSS FAQ

42.34%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 97 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2003-0907

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
5.1	MEDIUM	AV:N/AC:H/Au:N/C:P/I:P/A:P	4.9	6.4	NIST
Access Vector: Network Access Complexity: High Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

CWE ids for CVE-2003-0907

CWE-88 Improper Neutralization of Argument Delimiters in a Command ('Argument Injection')

The product constructs a string for a command to be executed by a separate component in another control sphere, but it does not properly delimit the intended arguments, options, or switches within that command string.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2003-0907

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1000

404 Not Found
Broken Link
http://www.securityfocus.com/bid/10119

Broken Link;Third Party Advisory;VDB Entry
http://www.idefense.com/application/poi/display?id=100&type=vulnerabilities

Broken Link
http://www.us-cert.gov/cas/techalerts/TA04-104A.html

Page Not Found | CISA
Broken Link;Third Party Advisory;US Government Resource

CVEs referencing this url
http://www.kb.cert.org/vuls/id/260588

VU#260588 - Microsoft Windows Help and Support Center (HCP) fails to validate HCP URLs
Patch;Third Party Advisory;US Government Resource
http://lists.grok.org.uk/pipermail/full-disclosure/2004-April/020065.html

[Full-Disclosure] Mailing List Charter
Broken Link
http://marc.info/?l=bugtraq&m=108196864221676&w=2

'[Full-Disclosure] iDEFENSE Security Advisory 04.13.04 - Microsoft Help and Support' - MARC
Third Party Advisory
http://www.ciac.org/ciac/bulletins/o-114.shtml

Broken Link

CVEs referencing this url
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-011

Microsoft Security Bulletin MS04-011 - Critical | Microsoft Learn
Patch;Vendor Advisory

CVEs referencing this url
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A904

404 Not Found
Broken Link
https://exchange.xforce.ibmcloud.com/vulnerabilities/15704

Microsoft Windows XP and Windows Server 2003 HCP URL code execution CVE-2003-0907 Vulnerability Report
Third Party Advisory;VDB Entry

Jump to

Vulnerability Details : CVE-2003-0907

Products affected by CVE-2003-0907

Exploit prediction scoring system (EPSS) score for CVE-2003-0907

CVSS scores for CVE-2003-0907

CWE ids for CVE-2003-0907

References for CVE-2003-0907