Unrated severityNVD Advisory· Published Dec 12, 2007· Updated Apr 23, 2026

CVE-2007-3039

Description

Stack-based buffer overflow in the Microsoft Message Queuing (MSMQ) service in Microsoft Windows 2000 Server SP4, Windows 2000 Professional SP4, and Windows XP SP2 allows attackers to execute arbitrary code via a long string in an opnum 0x06 RPC call to port 2103. NOTE: this is remotely exploitable on Windows 2000 Server.

Affected products

Microsoft/Message Queuing
cpe:2.3:a:microsoft:message_queuing:*:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

secunia.com/advisories/28011nvdVendor Advisory
secunia.com/advisories/28051nvdVendor Advisory
www.us-cert.gov/cas/techalerts/TA07-345A.htmlnvdUS Government Resource
www.securityfocus.com/archive/1/484891/100/0/threadednvd
www.securityfocus.com/archive/1/485268/100/0/threadednvd
www.securityfocus.com/bid/26797nvd
www.securitytracker.com/idnvd
www.vupen.com/english/advisories/2007/4181nvd
www.zerodayinitiative.com/advisories/ZDI-07-076.htmlnvd
docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-065nvd
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4474nvd
www.exploit-db.com/exploits/4745nvd
www.exploit-db.com/exploits/4760nvd
www.exploit-db.com/exploits/4934nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.067
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000