Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0118

Overview

Vulnerability Score 7.2 7.2
CVE Id CVE-2004-0118
Last Modified 10 Sep 2008 03:25:09
Published 01 Jun 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2004-0118

Summary

The component for the Virtual DOS Machine (VDM) subsystem in Windows NT 4.0 and Windows 2000 does not properly validate system structures, which allows local users to access protected kernel memory and execute arbitrary code.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000

  • Microsoft Windows Nt 4.0


References

CERT-VN - VU#783748

CERT - TA04-104A

MS - MS04-011

EEYE - AD20040413E

FULLDISC - 20040413 EEYE: Windows VDM TIB Local Privilege Escalation

XF - win-vdm-gain-privileges(15714)

BID - 10117

CIAC - O-114


Last Updated: 27 May 2016 10:38:28