Description
The getCanonicalPath function in Windows NT 4.0 may free memory that it does not own and cause heap corruption, which allows attackers to cause a denial of service (crash) via requests that cause a long file name to be passed to getCanonicalPath, as demonstrated on the IBM JVM using a long string to the java.io.getCanonicalPath Java method.
Product(s):
- Microsoft Windows NT 4.0 Enterprise Server
- Microsoft Windows NT 4.0 Server
- Microsoft Windows NT 4.0 Terminal Server
- Microsoft Windows 4.0 gold server
- Microsoft Windows NT 4.0 Terminal Server Edition (Initial release)
- Microsoft Windows NT 4.0 Service Pack 1 Enterprise Server
- Microsoft Windows 4.0 sp1 server
- Microsoft Windows NT Terminal Server 4.0 SP1
- Microsoft Windows NT 4.0 Service Pack 2 Enterprise Server
- Microsoft Windows 4.0 sp2 server
- Microsoft Windows NT Terminal Server 4.0 SP2
- Microsoft Windows NT 4.0 Service Pack 3 Enterprise Server
- Microsoft Windows 4.0 sp3 server
- Microsoft Windows NT Terminal Server 4.0 SP3
- Microsoft Windows NT 4.0 Service Pack 4 Enterprise Server
- Microsoft Windows 4.0 sp4 server
- Microsoft Windows NT Terminal Server 4.0 SP4
- Microsoft Windows NT 4.0 Service Pack 5 Enterprise Server
- Microsoft Windows 4.0 sp5 server
- Microsoft Windows NT Terminal Server 4.0 SP5
- Microsoft Windows NT 4.0 Service Pack 6 Enterprise Server
- Microsoft Windows 4.0 sp6 server
- Microsoft Windows NT Terminal Server 4.0 SP6
- Microsoft Windows NT 4.0 Service Pack 6a Enterprise Server
- Microsoft Windows 4.0 sp6a server
- Microsoft Windows NT Terminal Server 4.0 SP6a
- Microsoft Windows NT 4.0 Server Post Service Pack 6a Security Rollup
- Microsoft Windows NT 4.0 Service Roll-up Terminal Server
Question to Ask Vendors:
- Can you confirm whether your systems are affected by CVE-2003-0525, and if so, what steps are you currently taking to mitigate this vulnerability?
- What is your estimated timeline for fully resolving CVE-2003-0525 in your products or services, and how will you communicate updates on this issue to us as your customer?
Recommended Actions:
- Check out the advisory links provided below.