Denial of Service in Microsoft Proxy Server and ISA Server
CVE-2003-0110

Currently unrated

Key Information:

Vendor: Microsoft
Status: Isa Server; Proxy Server
Vendor: CVE Published:; 5 May 2003

What is CVE-2003-0110?

The vulnerability allows remote attackers to disrupt service on Microsoft Proxy Server 2.0 and ISA Server 2000 by sending spoofed, malformed packets to UDP port 1745. This can lead to excessive CPU consumption or create a packet storm, effectively rendering the service unavailable.

References

http://marc.info/?l=bugtraq&m=104994487012027&w=2

mailing-listx_refsource_BUGTRAQ

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.idefense.com/advisory/04.09.03.txt

x_refsource_MISC

EPSS Score

19% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
May 5, 2003
Vulnerability Reserved
Feb 26, 2003