Buffer Overflow in Microsoft Firewall Service's H.323 Filter
CVE-2003-0819

Currently unrated

Key Information:

Vendor: Microsoft
Status: Proxy Server
Vendor: CVE Published:; 17 February 2004

Summary

A buffer overflow vulnerability exists in the H.323 filter of Microsoft Internet Security and Acceleration Server 2000. This flaw allows remote attackers to execute arbitrary code by sending specially crafted H.323 traffic to the Microsoft Firewall Service. The vulnerability can be exploited through the use of specific payloads, as validated by security testing methodologies such as the NISCC/OUSPG PROTOS test suite for the H.225 protocol. Organizations using the affected version should implement necessary security measures or updates to mitigate potential risks.

References

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.securityfocus.com/bid/9406

vdb-entryx_refsource_BID

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

58% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Feb 17, 2004
Vulnerability Reserved
Sep 18, 2003