MS03-024: SMB Request Handler Buffer Overflow (817606)

Critical Nessus Plugin ID 11787


Arbitrary code can be executed on the remote host.


The remote host is affected by a vulnerability in its SMB stack that could allow an authenticated attacker to corrupt the memory of this host. This may result in execution of arbitrary code on this host, or an attacker may disable this host remotely.


Microsoft has released a set of patches for Windows NT, 2000, XP.

See Also

Plugin Details

Severity: Critical

ID: 11787

File Name: smb_nt_ms03-024.nasl

Version: $Revision: 1.50 $

Type: local

Agent: windows

Published: 2003/07/10

Modified: 2017/05/25

Dependencies: 13855, 57033

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C


Base Score: 9.8

Temporal Score: 8.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C

Vulnerability Information

CPE: cpe:/o:microsoft:windows

Required KB Items: SMB/MS_Bulletin_Checks/Possible

Exploit Available: false

Exploit Ease: No known exploits are available

Patch Publication Date: 2003/07/09

Vulnerability Publication Date: 2003/07/09

Reference Information

CVE: CVE-2003-0345

BID: 8152

OSVDB: 11801

MSFT: MS03-024

CERT: 337764

MSKB: 817606