7.2

CVE-2004-0118

The component for the Virtual DOS Machine (VDM) subsystem in Windows NT 4.0 and Windows 2000 does not properly validate system structures, which allows local users to access protected kernel memory and execute arbitrary code.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 22.24% 0.974
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.2 3.9 10
AV:L/AC:L/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
http://www.us-cert.gov/cas/techalerts/TA04-104A.html
Third Party Advisory
US Government Resource
http://www.ciac.org/ciac/bulletins/o-114.shtml
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-011
http://lists.grok.org.uk/pipermail/full-disclosure/2004-April/020070.html
http://www.eeye.com/html/Research/Advisories/AD20040413E.html
Patch
Vendor Advisory
http://www.kb.cert.org/vuls/id/783748
Patch
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/10117
https://exchange.xforce.ibmcloud.com/vulnerabilities/15714
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1512
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1718