CVE-2004-0899

3 documents3 sources
Severity
5.0MEDIUM
EPSS
37.3%
top 2.83%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Windows NT
Timeline
PublishedJan 10
Latest updateApr 29

Description

The DHCP Server service for Microsoft Windows NT 4.0 Server and Terminal Server Edition, with DHCP logging enabled, does not properly validate the length of certain messages, which allows remote attackers to cause a denial of service (application crash) via a malformed DHCP message, aka "Logging Vulnerability."

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-8837-mqmw-p5pc: The DHCP Server service for Microsoft Windows NT 42022-04-29
CVEList
CVE-2004-0899: The DHCP Server service for Microsoft Windows NT 42004-12-15
CVE-2004-0899 (MEDIUM CVSS 5) | The DHCP Server service for Microso | cvebase.io