CVE-2003-0110

3 documents3 sources

Severity

5.0MEDIUM

EPSS

19.5%

top 4.61%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft ISA Server Microsoft Proxy Server

Timeline

PublishedMay 5

Latest updateApr 29

Description

The Winsock Proxy service in Microsoft Proxy Server 2.0 and the Microsoft Firewall service in Internet Security and Acceleration (ISA) Server 2000 allow remote attackers to cause a denial of service (CPU consumption or packet storm) via a spoofed, malformed packet to UDP port 1745.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

▶NVDmicrosoft/proxy_server2.0

▶NVDmicrosoft/isa_server2000

Patches

Patch: www.idefense.com ↗Patch: www.idefense.com ↗

🔴Vulnerability Details

GHSA

GHSA-rj9f-x466-2vr9: The Winsock Proxy service in Microsoft Proxy Server 2↗2022-04-29

▶

CVEList

CVE-2003-0110: The Winsock Proxy service in Microsoft Proxy Server 2↗2003-04-15

▶