Microsoft Windows Non-English patched with MS03-045 denial of service in Sophos Anti-Virus
| win-ms03045-applications-dos (13444) |  Medium Risk |
Description:
Non-English versions of Microsoft Windows XP, Windows 2003, Windows 2000, or Windows NT running Sophos Anti-Virus that have applied the patch in Microsoft Security Bulletin MS03-045 are vulnerable to a denial of service attack. Sophos Anti-Virus is software that is used to protect against viruses and to reduce spam. When the MS03-045 patch is applied to Norwegian, Spanish, Polish, Italian, or Swedish versions of Windows NT, Windows 2000, Windows XP or Windows 2003 or Danish versions of Windows 2000, the patch causes Sophos Anti-Virus to stop functioning.
Consequences:
Denial of Service
Remedy:
Microsoft released a revised Microsoft Security Bulletin MS03-045 on October 22, 2003 to reflect the availability of updated patch for specific languages. See References.
For Windows XP:
Apply the appropriate patch for your system, as listed in Microsoft Security Bulletin MS05-018. See References.
Note: Microsoft originally provided a patch for this vulnerability in MS03-045, but it was superseded by the patch released with MS05-002, which was then superseded by the patch released with MS05-053.
For Windows XP SP1:
Apply the appropriate patch for your system, as listed in Microsoft Security Bulletin MS05-053. See References.
Note: Microsoft originally provided a patch for this vulnerability in MS03-045, but it was superseded by the patch released with MS05-002, which was then superseded by the patch released with MS05-053.
For Windows 2000:
Microsoft originally provided a patch for this vulnerability in MS03-045, but it has been superseded by the patch released with MS04-031. Microsoft is also reporting that MS03-045 has been superseded by MS04-032. The patch released with MS03-045 has been superseded by the patch released with MS05-002, which has been superseded by the patch released with MS05-018. See References.
For Windows NT 4.0:
Apply the appropriate patch for your system, as listed in Microsoft Security Bulletin MS05-002. See References.
Note: Microsoft originally provided a patch for this vulnerability in MS03-045, but it was superseded by the patch released with MS05-002.
For Windows Server 2003:
Apply the appropriate patch for your system, as listed in Microsoft Security Bulletin MS05-018. See References.
Note: Microsoft originally provided a patch for this vulnerability in MS03-045, but it was superseded by the patch released with MS05-002, and then superseded by the patch released with MS05-018. Microsoft is also reporting that MS05-002 has been superseded by the patch released with MS07-017. See References.
References:
- CIAC Information Bulletin O-009: Microsoft Listbox and ComboBox Control Buffer Overrun Vulnerabilities.
- Microsoft Security Bulletin MS03-045: Buffer Overrun in the ListBox and in the ComboBox Control Could Allow Code Execution (824141).
- NTBugTraq Mailing List, Tue Oct 21 2003 - 20:56:02 CDT: MinorRev: Microsoft Security Bulletin MS03-045 - Buffer Overrun in the ListBox and in the ComboBox Control Could Allow Code Execution (824141).
- Sophos Web site: Alert: UPDATED - Reported system problems with Microsoft MS03-045 patches.
- BID-8827: Microsoft ListBox/ComboBox Control User32.dll Function Buffer Overrun Vulnerability
- CVE-2003-0659: Buffer overflow in a function in User32.dll on Windows NT through Server 2003 allows local users to execute arbitrary code via long (1) LB_DIR messages to ListBox or (2) CB_DIR messages to ComboBox controls in a privileged application.
- US-CERT VU#967668: Microsoft Windows ListBox and ComboBox controls vulnerable to buffer overflow when supplied crafted Windows message
Platforms Affected:
- Microsoft Windows 2000
- Microsoft Windows 2003 Server
- Microsoft Windows NT
- Microsoft Windows XP
Reported:
Oct 17, 2003
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net