CVE-2003-0525

EPSS 4.45% · P89 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2003-0525

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

The getCanonicalPath function in Windows NT 4.0 may free memory that it does not own and cause heap corruption, which allows attackers to cause a denial of service (crash) via requests that cause a long file name to be passed to getCanonicalPath, as demonstrated on the IBM JVM using a long string to the java.io.getCanonicalPath Java method.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Windows NT 4.0系统IBM JVM远程拒绝服务攻击漏洞(MS03-029)

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Windows NT 4.0是一款Microsoft开发的视窗操作系统。 Windows NT 4.0文件名处理中存在缺陷，远程攻击者可以利用这个漏洞使NT 4.0文件名进程函数崩溃，造成拒绝服务。 @stake通过运行在IBM JVM上的Java Servlet触发了此漏洞。问题存在于IBM Java 2实时环境中，当传递超长字符串给java.io.getCanonicalPath()函数时，可导致程序崩溃。任何传递用户提供的数据给getCanonicalPath()函数的应用程序都存在此漏洞。当传递

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2003-0525

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2003-0525

请登录查看更多情报信息。

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-029vendor-advisoryx_refsource_MS
http://www.atstake.com/research/advisories/2003/a072303-1.txtvendor-advisoryx_refsource_ATSTAKE
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A319vdb-entrysignaturex_refsource_OVAL
https://exchange.xforce.ibmcloud.com/vulnerabilities/12701vdb-entryx_refsource_XF
https://nvd.nist.gov/vuln/detail/CVE-2003-0525

Same Patch Batch · n/a · 2003-07-25 · 26 CVEs total

CVE-2003-0462		Linux 2.4内核execve()系统调用竞争条件洞
CVE-2003-0599		phpGroupWare虚拟文件系统(VFS)未知漏洞
CVE-2003-0597		SCO OpenServer Display本地权限提升漏洞
CVE-2003-0596		FDClone本地不安全临时目录创建漏洞
CVE-2003-0595		WiTango Application Server和Tango缓冲区溢出漏洞
CVE-2003-0581		xfstt远程拒绝服务攻击漏洞
CVE-2003-0567		Cisco IOS IPv4报文处理拒绝服务攻击漏洞
CVE-2003-0562		Novell Netware Enterprise Web Server CGI2Perl.NLM缓冲区溢出漏洞
CVE-2003-0552		Linux漏洞
CVE-2003-0551		Linux STP协议执行过程服务拒绝漏洞
CVE-2003-0550		Linux STP协议漏洞
CVE-2003-0502		Apple QuickTime / Darwin Streaming服务器服务拒绝漏洞
CVE-2003-0464		Linux kernel RPC代码漏洞
CVE-2003-0230		Microsoft SQL Server / MSDE命名管道权限提升漏洞
CVE-2003-0461		Linux Kernel串行驱动Proc文件信息泄露漏洞
CVE-2003-0460		Apache 安全漏洞
CVE-2003-0426		Apple QuickTime / Darwin Streaming Server特权提升漏洞
CVE-2003-0425		Apple QuickTime/Darwin Streaming Server目录遍历漏洞
CVE-2003-0424		Apple QuickTime/Darwin Streaming服务器脚本源泄漏漏洞
CVE-2003-0423		Apple QuickTime/Darwin Streaming Server parse_xml.cgi资源耗尽漏洞

Showing top 20 of 26 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2003-0525

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2003-0525

I. Basic Information for CVE-2003-0525

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2003-0525

III. Intelligence Information for CVE-2003-0525

Same Patch Batch · n/a · 2003-07-25 · 26 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2003-0525

Leave a comment