Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2003-0910 — Microsoft Windows NT vulnerability

4 documents4 sources

Severity

7.2HIGHNVD

EPSS

6.0%

top 9.28%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Microsoft Windows NT

Timeline

PublishedJun 1

Latest updateApr 29

Description

The NtSetLdtEntries function in the programming interface for the Local Descriptor Table (LDT) in Windows NT 4.0 and Windows 2000 allows local attackers to gain access to kernel memory and execute arbitrary code via an expand-down data segment descriptor descriptor that points to protected memory.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

▶NVDmicrosoft/windows_nt4.0

Patches

Patch: www.eeye.com ↗Patch: www.kb.cert.org ↗Patch: www.eeye.com ↗

🔴Vulnerability Details

GHSA

GHSA-4w53-6539-fq3q: The NtSetLdtEntries function in the programming interface for the Local Descriptor Table (LDT) in Windows NT 4↗2022-04-29

▶

CVEList

CVE-2003-0910: The NtSetLdtEntries function in the programming interface for the Local Descriptor Table (LDT) in Windows NT 4↗2004-04-16

▶

💥Exploits & PoCs

Exploit-DB

Microsoft Windows NT 4.0/2000 - Local Descriptor Table Privilege Escalation (MS04-011)↗2004-04-18

▶