Stack-based Buffer Overflow in Microsoft Windows XP and Server 2003
CVE-2013-3878

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Xp; Windows Server 2003
Vendor: CVE Published:; 11 December 2013

Summary

A stack-based buffer overflow vulnerability exists in the Local Remote Procedure Call (LRPC) client in Microsoft Windows XP and Windows Server 2003. This flaw allows local users to exploit the vulnerability by crafting specific LRPC server messages, leading to privilege escalation. The affected products include Windows XP SP2, SP3, and Windows Server 2003 SP2, making it essential for users to apply security updates to mitigate potential risks. For detailed information, refer to the official Microsoft security advisory MS13-102.

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

Timeline

Vulnerability published
Dec 11, 2013
Vulnerability Reserved
Jun 3, 2013