CVE-2004-0118

EPSS 8.95%
Veröffentlicht 01.06.2004 04:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

The component for the Virtual DOS Machine (VDM) subsystem in Windows NT 4.0 and Windows 2000 does not properly validate system structures, which allows local users to access protected kernel memory and execute arbitrary code.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 13

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Microsoft ≫ Windows 2000

Microsoft ≫ Windows Nt Version4.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	8.95%	0.923

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.2	3.9	10	AV:L/AC:L/Au:N/C:C/I:C/A:C

http://www.us-cert.gov/cas/techalerts/TA04-104A.html

Third Party Advisory

US Government Resource

http://www.ciac.org/ciac/bulletins/o-114.shtml

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-011

http://lists.grok.org.uk/pipermail/full-disclosure/2004-April/020070.html

http://www.eeye.com/html/Research/Advisories/AD20040413E.html

Patch

Vendor Advisory

http://www.kb.cert.org/vuls/id/783748

Patch

Third Party Advisory

US Government Resource

http://www.securityfocus.com/bid/10117

https://exchange.xforce.ibmcloud.com/vulnerabilities/15714

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1512

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1718

https://nvd.nist.gov/vuln/detail/CVE-2004-0118

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2004-0118

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2004-0118

EUVD