Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2003-0818Microsoft Windows 2003 Server vulnerability

13 documents5 sources
Severity
7.5HIGHNVD
EPSS
89.7%
top 0.44%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Microsoft Windows 2003 ServerMicrosoft Windows NT
Timeline
PublishedMar 3
Latest updateApr 29

Description

Multiple integer overflows in Microsoft ASN.1 library (MSASN1.DLL), as used in LSASS.EXE, CRYPT32.DLL, and other Microsoft executables and libraries on Windows NT 4.0, 2000, and XP, allow remote attackers to execute arbitrary code via ASN.1 BER encodings with (1) very large length fields that cause arbitrary heap data to be overwritten, or (2) modified bit strings.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

🔴Vulnerability Details

2
GHSA
GHSA-whjg-p56q-xrf9: Multiple integer overflows in Microsoft ASN2022-04-29
CVEList
CVE-2003-0818: Multiple integer overflows in Microsoft ASN2004-02-11

💥Exploits & PoCs

3
Exploit-DB
Microsoft Windows - ASN.1 Library Bitstring Heap Overflow (MS04-007) (Metasploit)2010-07-25
Exploit-DB
Microsoft Windows - ASN.1 Remote (MS04-007)2004-03-26
Exploit-DB
Microsoft Windows - ASN.1 'LSASS.exe' Remote Denial of Service (MS04-007)2004-02-14

🔍Detection Rules

7
Suricata
GPL EXPLOIT NTLM ASN.1 vulnerability scan attempt2010-09-23
Suricata
GPL NETBIOS SMB Session Setup NTMLSSP unicode andx asn1 overflow attempt2010-09-23
Suricata
GPL NETBIOS SMB-DS DCERPC NTLMSSP invalid mechlistMIC attempt2010-09-23
Suricata
GPL NETBIOS SMB-DS Session Setup NTMLSSP asn1 overflow attempt2010-09-23
Suricata
GPL NETBIOS SMB-DS Session Setup NTMLSSP unicode asn1 overflow attempt2010-09-23
CVE-2003-0818 — Microsoft vulnerability | cvebase