MS03-043: Buffer Overrun in Messenger Service (828035) (uncredentialed check)

Critical Nessus Plugin ID 11890


Arbitrary code can be executed on the remote host.


A security vulnerability exists in the Messenger Service that could allow arbitrary code execution on an affected system. An attacker who successfully exploited this vulnerability could be able to run code with Local System privileges on an affected system or could cause the Messenger Service to fail.
Disabling the Messenger Service will prevent the possibility of attack.

This plugin actually tests for the presence of this flaw.


Microsoft has released a set of patches for Windows NT, 2000, XP and 2003.

See Also

Plugin Details

Severity: Critical

ID: 11890

File Name: messenger_ms03-043.nasl

Version: $Revision: 1.45 $

Type: remote

Agent: windows

Family: Windows

Published: 2003/10/16

Modified: 2017/08/30

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 8.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:F/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/o:microsoft:windows

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2003/10/15

Reference Information

CVE: CVE-2003-0717

BID: 8826

OSVDB: 10936

MSFT: MS03-043

MSKB: 828035