CVE-2003-0719

high Microsoft
CVSS v3 Base Score
7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
EPSS Score
74.7%
Exploitation probability in 30 days
Top 1% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Confidentiality
P
Integrity
P
Availability
P
Published: June 1, 2004 (8017 days ago)
Last Modified: April 16, 2026
Vendor: Microsoft
Source: NVD

Description

Buffer overflow in the Private Communications Transport (PCT) protocol implementation in the Microsoft SSL library, as used in Microsoft Windows NT 4.0 SP6a, 2000 SP2 through SP4, XP SP1, Server 2003, NetMeeting, Windows 98, and Windows ME, allows remote attackers to execute arbitrary code via PCT 1.0 handshake packets.

CWE

NVD-CWE-Other

Affected Products

microsoft netmeetingmicrosoft windows 2000microsoft windows 2003 servermicrosoft windows 98microsoft windows memicrosoft windows ntmicrosoft windows xp

References

🔗 www.kb.cert.org 🔗 www.securityfocus.com 🔗 www.us-cert.gov 🔗 xforce.iss.net 🔗 docs.microsoft.com