CVE-2017-0176

Summary

A buffer overflow in Smart Card authentication code in gpkcsp.dll in Microsoft Windows XP through SP3 and Server 2003 through SP2 allows a remote attacker to execute arbitrary code on the target computer, provided that the computer is joined in a Windows domain and has Remote Desktop Protocol connectivity (or Terminal Services) enabled.

Affected Software

VendorProductVersion RangeStatus
MicrosoftMicrosoft Windows Server 2003 SP1, SP2 Windows XP - SP3Microsoft Windows Server 2003 SP1, SP2 Windows XP - SP3affected

Weaknesses

  • Buffer Overflow

ADP Enrichment

CVE Program Container

Additional References

References