CVE Vulnerabilities

CVE-2003-0659

Published: Nov 17, 2003 | Modified: Apr 30, 2019
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

Buffer overflow in a function in User32.dll on Windows NT through Server 2003 allows local users to execute arbitrary code via long (1) LB_DIR messages to ListBox or (2) CB_DIR messages to ComboBox controls in a privileged application.

Affected Software

Name Vendor Start Version End Version
Windows_nt Microsoft 4.0 4.0
Windows_xp Microsoft * *
Windows_nt Microsoft 4.0 4.0
Windows_2003_server Microsoft web web
Windows_2003_server Microsoft enterprise enterprise
Windows_xp Microsoft * *
Windows_nt Microsoft 4.0 4.0
Windows_2003_server Microsoft enterprise_64-bit enterprise_64-bit
Windows_xp Microsoft * *
Windows_2003_server Microsoft r2 r2
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_2000 Microsoft * *
Windows_2000 Microsoft * *
Windows_2000 Microsoft * *
Windows_nt Microsoft 4.0 4.0
Windows_xp Microsoft * *
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_xp Microsoft * *
Windows_2003_server Microsoft r2 r2
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_xp Microsoft * *
Windows_2003_server Microsoft standard standard
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_2000 Microsoft * *
Windows_2000 Microsoft * *
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_nt Microsoft 4.0 4.0
Windows_xp Microsoft * *

References