CVE-2003-0812
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2003-0812
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Stack-based buffer overflow in a logging function for Windows Workstation Service (WKSSVC.DLL) allows remote attackers to execute arbitrary code via RPC calls that cause long entries to be written to a debug log file ("NetSetup.LOG"), as demonstrated using the NetAddAlternateComputerName API.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft Windows工作站服务远程缓冲区溢出漏洞(MS03-049/KB828749)
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Microsoft DCE/RPC服务可以提供网络管理功能,这些功能提供管理用户帐户和网络资源管理的功能。部分网络管理功能在Windows目录下的"debug"子目录会生成调试日志文件。 Microsoft Workstation服务在处理日志记录时缺少充分的边界缓冲区检查,远程攻击者可以利用这个漏洞提供超长参数触发缓冲区溢出,以SYSTEM权限在系统上执行任意指令。 日志功能中使用vsprintf()在日志文件中生成字符串,日志文件名为"NetSetup.LOG",其保存在Windows "debug"
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2003-0812
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2003-0812
Please Login to view more intelligence information
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-049vendor-advisoryx_refsource_MS
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A575vdb-entrysignaturex_refsource_OVAL
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A331vdb-entrysignaturex_refsource_OVAL
- https://nvd.nist.gov/vuln/detail/CVE-2003-0812
Same Patch Batch · n/a · 2003-11-18 · 20 CVEs total
| CVE-2003-0858 | Zebra及quagga服务拒绝漏洞 | |
| CVE-2003-0951 | HP-UX获得敏感数据或提升特权漏洞 | |
| CVE-2003-0950 | PeopleSoft PeopleTools IClient Servlet任意代码执行漏洞 | |
| CVE-2003-0948 | IWConfig Local ARG命令行缓冲区溢出漏洞 | |
| CVE-2003-0947 | iwconfig 缓冲区溢出漏洞 | |
| CVE-2003-0946 | Clam AntiVirus格式字符串漏洞 | |
| CVE-2003-0937 | SCO UnixWare/Open UNIX不安全ProcFS处理漏洞 | |
| CVE-2003-0936 | Symantec PCAnywhere本地权限提升漏洞 | |
| CVE-2003-0932 | Omega-RPG缓冲区溢出漏洞 | |
| CVE-2003-0859 | 伪造内核Netlink接口消息本地拒绝服务攻击漏洞 | |
| CVE-2003-0089 | HP-UX Software Distributor本地缓冲区溢出漏洞 | |
| CVE-2003-0856 | Linux IPRoute伪造内核消息本地拒绝服务攻击漏洞 | |
| CVE-2003-0824 | Microsoft FrontPage Server Extensions远程缓冲区溢出漏洞(MS03-051) | |
| CVE-2003-0822 | Microsoft FrontPage Server Extensions远程缓冲区溢出漏洞(MS03-051) | |
| CVE-2003-0821 | Microsoft Word/Excel 远程任意代码可执行漏洞(MS03-050) | |
| CVE-2003-0820 | Microsoft Word/Excel 远程任意代码可执行漏洞(MS03-050) | |
| CVE-2003-0795 | GNU Zebra / Quagga远程拒绝服务攻击漏洞 | |
| CVE-2003-0629 | PeopleTools PeopleSoft Iscript跨站脚本攻击漏洞 | |
| CVE-2003-0628 | PeopleSoft PeopleTools网关管理Servlet路径泄露漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8196
JeecgBoot mLogin Endpoint LoginController.java authorization - CVE-2026-8195
JeecgBoot SVG File CommonController.java cross site scriptin - CVE-2026-8194
osTicket Dispatcher class.dispatcher.php cross-site request - CVE-2026-8193
Akaunting Invoice PDF Rendering dompdf.php server-side reque - CVE-2026-8186
Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out-
V. Comments for CVE-2003-0812
No comments yet