CyberSec.Space Logo
Back to CVE Browser

CVE-2004-0210

Known Exploited (CISA KEV)HIGH
7.8
CVSS Severity Score
EPSS Score65.4410%
EPSS Percentile86.00th
PublishedAug 6, 2004
Last ModifiedApr 16, 2026

Vulnerability Description

The POSIX component of Microsoft Windows NT and Windows 2000 allows local users to execute arbitrary code via certain parameters, possibly by modifying message length values and causing a buffer overflow.

Affected Platforms (CPE)

πŸ“¦
Microsoft

Interix

= 2.2
πŸ’»
Microsoft

Windows 2000

All versions
πŸ’»
Microsoft

Windows 2000

All versions
πŸ’»
Microsoft

Windows 2000

All versions
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0
πŸ’»
Microsoft

Windows Nt

= 4.0

References & Advisories

πŸ”— http://www.kb.cert.org/vuls/id/647436
πŸ”— http://www.us-cert.gov/cas/techalerts/TA04-196A.html
πŸ”— https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-020
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/16590
πŸ”— https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2166
πŸ”— https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2847
πŸ”— http://www.kb.cert.org/vuls/id/647436
πŸ”— http://www.us-cert.gov/cas/techalerts/TA04-196A.html

Related Vulnerabilities

CVE-2002-00207.5

Buffer overflow in telnet server in Windows 2000 and Interix 2.2 allows remote attackers to execute arbitrary code via malformed p...

CVE-2002-11405.0

The Sun Microsystems RPC library Services for Unix 3.0 Interix SD, as implemented on Microsoft Windows NT4, 2000, and XP, allows r...

CVE-2002-11415.0

An input validation error in the Sun Microsystems RPC library Services for Unix 3.0 Interix SD, as implemented on Microsoft Window...

CVE-2009-05374.9

Integer overflow in the fts_build function in fts.c in libc in (1) OpenBSD 4.4 and earlier and (2) Microsoft Interix 6.0 build 10....