CVE-2007-3039

critical Microsoft
CVSS v3 Base Score
9.0
AV:N/AC:L/Au:S/C:C/I:C/A:C
EPSS Score
83.4%
Exploitation probability in 30 days
Top 1% most likely to be exploited
Attack Characteristics
Attack Vector
Network
Attack Complexity
Low
Confidentiality
C
Integrity
C
Availability
C
Published: December 12, 2007 (6728 days ago)
Last Modified: April 23, 2026
Vendor: Microsoft
Source: NVD

Description

Stack-based buffer overflow in the Microsoft Message Queuing (MSMQ) service in Microsoft Windows 2000 Server SP4, Windows 2000 Professional SP4, and Windows XP SP2 allows attackers to execute arbitrary code via a long string in an opnum 0x06 RPC call to port 2103. NOTE: this is remotely exploitable on Windows 2000 Server.

CWE

CWE-119

Affected Products

microsoft message queuing

References

🔗 secunia.com 🔗 secunia.com 🔗 www.securityfocus.com 🔗 www.securityfocus.com 🔗 www.securityfocus.com