Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2004-0894 — Microsoft Windows 2003 Server vulnerability

4 documents4 sources

Severity

7.2HIGHNVD

EPSS

1.1%

top 22.24%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Microsoft Windows 2003 Server

Timeline

PublishedJan 10

Latest updateApr 29

Description

LSASS (Local Security Authority Subsystem Service) of Windows 2000 Server and Windows Server 2003 does not properly validate connection information, which allows local users to gain privileges via a specially-designed program.

CVSS vector

AV:L/AC:L/C:C/I:C/A:CExploitability: 3.9 | Impact: 10.0

Affected Packages1 packages

▶NVDmicrosoft/windows_2003_server6 versions+5

🔴Vulnerability Details

GHSA

GHSA-p6xr-g6c8-hgrw: LSASS (Local Security Authority Subsystem Service) of Windows 2000 Server and Windows Server 2003 does not properly validate connection information, w↗2022-04-29

▶

CVEList

CVE-2004-0894: LSASS (Local Security Authority Subsystem Service) of Windows 2000 Server and Windows Server 2003 does not properly validate connection information, w↗2004-12-15

▶

💥Exploits & PoCs

Exploit-DB

Microsoft Windows - Improper Token Validation Privilege Escalation↗2005-01-11

▶