CVE-2004-0899

EPSS 37.27%
Published 10.01.2005 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

The DHCP Server service for Microsoft Windows NT 4.0 Server and Terminal Server Edition, with DHCP logging enabled, does not properly validate the length of certain messages, which allows remote attackers to cause a denial of service (application crash) via a malformed DHCP message, aka "Logging Vulnerability."

Affected products Warnungen 0 Metrics 2 CWE 0 References 7

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Windows Nt Version4.0

Microsoft ≫ Windows Nt Version4.0 Editionalpha

Microsoft ≫ Windows Nt Version4.0 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Editionserver

Microsoft ≫ Windows Nt Version4.0 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Editionterminal_server_alpha

Microsoft ≫ Windows Nt Version4.0 Updatesp1

Microsoft ≫ Windows Nt Version4.0 Updatesp1 Editionalpha

Microsoft ≫ Windows Nt Version4.0 Updatesp1 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp1 Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp1 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp2

Microsoft ≫ Windows Nt Version4.0 Updatesp2 Editionalpha

Microsoft ≫ Windows Nt Version4.0 Updatesp2 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp2 Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp2 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp3

Microsoft ≫ Windows Nt Version4.0 Updatesp3 Editionalpha

Microsoft ≫ Windows Nt Version4.0 Updatesp3 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp3 Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp3 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp4

Microsoft ≫ Windows Nt Version4.0 Updatesp4 Editionalpha

Microsoft ≫ Windows Nt Version4.0 Updatesp4 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp4 Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp4 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp5

Microsoft ≫ Windows Nt Version4.0 Updatesp5 Editionalpha

Microsoft ≫ Windows Nt Version4.0 Updatesp5 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp5 Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp5 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp6

Microsoft ≫ Windows Nt Version4.0 Updatesp6 Editionalpha

Microsoft ≫ Windows Nt Version4.0 Updatesp6 Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp6 Editionserver

Microsoft ≫ Windows Nt Version4.0 Updatesp6 Editionterminal_server

Microsoft ≫ Windows Nt Version4.0 Updatesp6a

Microsoft ≫ Windows Nt Version4.0 Updatesp6a Editionalpha

Microsoft ≫ Windows Nt Version4.0 Updatesp6a Editionenterprise_server

Microsoft ≫ Windows Nt Version4.0 Updatesp6a Editionserver

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	37.27%	0.968

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-042

https://exchange.xforce.ibmcloud.com/vulnerabilities/18341

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2280

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4282

https://nvd.nist.gov/vuln/detail/CVE-2004-0899

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2004-0899

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2004-0899

EUVD