Windows RPC DCOM Multi-Threaded Race Condition Vulnerability

Windows RPC DCOM Multi-Threaded Race Condition Vulnerability

CVE-2003-0813 · MEDIUM Severity

AV:N/AC:H/AU:N/C:P/I:P/A:P

A multi-threaded race condition in the Windows RPC DCOM functionality with the MS03-039 patch installed allows remote attackers to cause a denial of service (crash or reboot) by causing two threads to process the same RPC request, which causes one thread to use memory after it has been freed, a different vulnerability than CVE-2003-0352 (Blaster/Nachi), CVE-2003-0715, and CVE-2003-0528, and as demonstrated by certain exploits against those vulnerabilities.

Learn more about our Web Application Penetration Testing UK.