CVE-2004-0124 — Microsoft Windows 2003 Server vulnerability

3 documents3 sources

Severity

2.6LOWNVD

EPSS

49.5%

top 2.20%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows 2003 Server Microsoft Windows NT

Timeline

PublishedJun 1

Latest updateApr 29

Description

The DCOM RPC interface for Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to cause network communications via an "alter context" call that contains additional data, aka the "Object Identity Vulnerability."

CVSS vector

AV:N/AC:H/C:P/I:N/A:NExploitability: 4.9 | Impact: 2.9

Affected Packages2 packages

▶NVDmicrosoft/windows_2003_serverr2

▶NVDmicrosoft/windows_nt4.0

Patches

Patch: www.kb.cert.org ↗Patch: www.kb.cert.org ↗

🔴Vulnerability Details

GHSA

GHSA-r86w-qh7f-w6w2: The DCOM RPC interface for Microsoft Windows NT 4↗2022-04-29

▶

CVEList

CVE-2004-0124: The DCOM RPC interface for Microsoft Windows NT 4↗2004-04-16

▶