CVE-2004-0900

3 documents3 sources
Severity
10.0CRITICAL
EPSS
41.5%
top 2.59%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Windows NT
Timeline
PublishedJan 10
Latest updateApr 29

Description

The DHCP Server service for Microsoft Windows NT 4.0 Server and Terminal Server Edition does not properly validate the length of certain messages, which allows remote attackers to execute arbitrary code via a malformed DHCP message, aka the "DHCP Request Vulnerability."

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-f43w-x8w6-2hjv: The DHCP Server service for Microsoft Windows NT 42022-04-29
CVEList
CVE-2004-0900: The DHCP Server service for Microsoft Windows NT 42004-12-15
CVE-2004-0900 (CRITICAL CVSS 10) | The DHCP Server service for Microso | cvebase.io