CVE-2003-0428
published 2003-07-24CVE-2003-0428: Unknown vulnerability in the DCERPC (DCE/RPC) dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service (memory…
PriorityP417medium5CVSS 2.0
AVNACLAuNCNINAP
EPSS
3.97%
89.2th percentile
Unknown vulnerability in the DCERPC (DCE/RPC) dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service (memory consumption) via a certain NDR string.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| ethereal_group | ethereal | <= 0.9.12 | — |
CVSS provenance
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:N/I:N/A:P
vendor_redhat5.0MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Red Hat
security flaw
vendor_redhat·2003-05-01·CVSS 5.0
CVE-2003-0428 [MEDIUM] security flaw
security flaw
Unknown vulnerability in the DCERPC (DCE/RPC) dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service (memory consumption) via a certain NDR string.
GHSA
GHSA-p35g-8cgj-q8wc: Unknown vulnerability in the DCERPC (DCE/RPC) dissector in Ethereal 0
ghsa_unreviewed·2022-05-03
CVE-2003-0428 [MEDIUM] GHSA-p35g-8cgj-q8wc: Unknown vulnerability in the DCERPC (DCE/RPC) dissector in Ethereal 0
Unknown vulnerability in the DCERPC (DCE/RPC) dissector in Ethereal 0.9.12 and earlier allows remote attackers to cause a denial of service (memory consumption) via a certain NDR string.
No detection rules found.
Exploit-DB
LANDesk Lenovo ThinkManagement Suite 9.0.3 Core Server - Arbitrary File Deletion
exploitdb·2012-03-19
CVE-2012-1196 LANDesk Lenovo ThinkManagement Suite 9.0.3 Core Server - Arbitrary File Deletion
LANDesk Lenovo ThinkManagement Suite 9.0.3 Core Server - Arbitrary File Deletion
---
LANDesk Lenovo ThinkManagement Suite 9.0.3 Core Server WSVulnerabilityCore.dll
SetTaskLogByFile() Remote Arbitrary File Deletion Vulnerability
Tested against: Microsoft Windows Server 2003 r2 sp2
Software home page: http://www.landesk.com/lenovo/thinkmanagement-console.aspx
Download url: http://www.landesk.com/downloads/lenovo/50.aspx
Files tested:
ThinkManagement9.0.2.exe
LD90-SP2-MCP_CONS-2011-0428.exe
LD90-SP2-MCP_SD-2011-0428.exe
ThinkManagementConsole9.0.3_b28.zip
Instrunctions were to install 9.0.2, then apply two patches, finally to install 9.0.3
Background:
The mentioned product creates various virtual directories on IIS.
Among them the 'WSVulnerabilityCore' one.
Without prior authenticatio
Exploit-DB
LANDesk Lenovo ThinkManagement Suite 9.0.3 - Core Server Remote Code Execution
exploitdb·2012-03-19
CVE-2012-1195 LANDesk Lenovo ThinkManagement Suite 9.0.3 - Core Server Remote Code Execution
LANDesk Lenovo ThinkManagement Suite 9.0.3 - Core Server Remote Code Execution
---
LANDesk Lenovo ThinkManagement Suite 9.0.3 Core Server AMTConfig.Business.dll
RunAMTCommand Remote Code Execution Vulnerability
Tested against: Microsoft Windows Server 2003 r2 sp2
Software home page: http://www.landesk.com/lenovo/thinkmanagement-console.aspx
Download url: http://www.landesk.com/downloads/lenovo/50.aspx
Files tested:
ThinkManagement9.0.2.exe
LD90-SP2-MCP_CONS-2011-0428.exe
LD90-SP2-MCP_SD-2011-0428.exe
ThinkManagementConsole9.0.3_b28.zip
Instrunctions were to install 9.0.2, then apply two patches, finally to install 9.0.3
Background:
The mentioned product creates various virtual directories on IIS.
Among them the 'core.anonymous' one inside the 'landesk' tree.
Without prior authentic
ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-030.0.txthttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000662http://secunia.com/advisories/9007http://www.debian.org/security/2003/dsa-324http://www.ethereal.com/appnotes/enpa-sa-00010.htmlhttp://www.kb.cert.org/vuls/id/542540http://www.redhat.com/support/errata/RHSA-2003-077.htmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A75ftp://ftp.sco.com/pub/security/OpenLinux/CSSA-2003-030.0.txthttp://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000662http://secunia.com/advisories/9007http://www.debian.org/security/2003/dsa-324http://www.ethereal.com/appnotes/enpa-sa-00010.htmlhttp://www.kb.cert.org/vuls/id/542540http://www.redhat.com/support/errata/RHSA-2003-077.htmlhttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A75
2003-07-24
Published