Microsoft SSL PCT Buffer Overflow Vulnerability
Publish Date: 21 juillet 2015
Gravité: : Élevé
Identifiant(s) CVE: : CVE-2003-0719
Date du conseil: 21 juillet 2015
Description
Buffer overflow in the Private Communications Transport (PCT) protocol implementation in the Microsoft SSL library, as used in Microsoft Windows NT 4.0 SP6a, 2000 SP2 through SP4, XP SP1, Server 2003, NetMeeting, Windows 98, and Windows ME, allows remote attackers to execute arbitrary code via PCT 1.0 handshake packets.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1000584
Trend Micro Deep Security DPI Rule Name: 1000584 - Microsoft SSL PCT Buffer Overflow Vulnerability
Affected software and version:
- Microsoft NetMeeting
- Microsoft Windows 2000 SP2
- Microsoft Windows 2000 SP4
- Microsoft Windows 98
- Microsoft Windows ME
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows Server 2003
- Microsoft Windows XP SP1