Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0206

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-0206
Last Modified 10 Sep 2008 03:25:30
Published 03 Nov 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0206

Summary

Network Dynamic Data Exchange (NetDDE) services for Microsoft Windows 98, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows attackers to remotely execute arbitrary code or locally gain privileges via a malicious message or application that involves an "unchecked buffer," possibly a buffer overflow.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000

  • Microsoft Windows 2003 Server R2

  • Microsoft Windows 98

  • Microsoft Windows Nt 4.0

  • Microsoft Windows Xp


References

CERT-VN - VU#640488

XF - win-ms04031-patch(17657)

XF - win-netdde-bo(16556)

MS - MS04-031

SECUNIA - 12803

BID - 11372

BUGTRAQ - 20041013 Microsoft Windows NetDDE Service Buffer Overflow


Last Updated: 27 May 2016 10:38:30