Remote Code Execution Vulnerability in Windows RPC Services
CVE-2002-1561

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Nt; Windows 2000 Terminal Services; Windows Xp; Windows 2000
Vendor: CVE Published:; 2 April 2003

What is CVE-2002-1561?

The RPC component in Microsoft Windows 2000, NT 4.0, and XP is susceptible to a denial of service attack. Attackers can exploit this vulnerability by sending a specially crafted malformed packet to the RPC Endpoint Mapper on TCP port 135. This results in a null pointer dereference within the service, causing it to become unresponsive and effectively disabling the RPC service, which is critical for various network functions.

References

http://www.securityfocus.com/bid/6005

vdb-entryx_refsource_BID

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

60% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Apr 2, 2003
Vulnerability Reserved
Mar 24, 2003