CyberSec.Space Logo
CVEブラウザに戻る

CVE-2004-0210

Known Exploited (CISA KEV)HIGH
7.8
CVSS Severity Score
EPSS Score65.4410%
EPSS Percentile86.00th
Published2004年8月6日
Last Modified2026年4月16日

Vulnerability Description

The POSIX component of Microsoft Windows NT and Windows 2000 allows local users to execute arbitrary code via certain parameters, possibly by modifying message length values and causing a buffer overflow.

Affected Platforms (CPE)

📦
Microsoft

Interix

= 2.2
💻
Microsoft

Windows 2000

All versions
💻
Microsoft

Windows 2000

All versions
💻
Microsoft

Windows 2000

All versions
💻
Microsoft

Windows Nt

= 4.0
💻
Microsoft

Windows Nt

= 4.0
💻
Microsoft

Windows Nt

= 4.0

References & Advisories

🔗 http://www.kb.cert.org/vuls/id/647436
🔗 http://www.us-cert.gov/cas/techalerts/TA04-196A.html
🔗 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-020
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/16590
🔗 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2166
🔗 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2847
🔗 http://www.kb.cert.org/vuls/id/647436
🔗 http://www.us-cert.gov/cas/techalerts/TA04-196A.html

関連する脆弱性情報

CVE-2002-00207.5

Buffer overflow in telnet server in Windows 2000 and Interix 2.2 allows remote attackers to execute arbitrary code via malformed p...

CVE-2002-11405.0

The Sun Microsystems RPC library Services for Unix 3.0 Interix SD, as implemented on Microsoft Windows NT4, 2000, and XP, allows r...

CVE-2002-11415.0

An input validation error in the Sun Microsystems RPC library Services for Unix 3.0 Interix SD, as implemented on Microsoft Window...

CVE-2009-05374.9

Integer overflow in the fts_build function in fts.c in libc in (1) OpenBSD 4.4 and earlier and (2) Microsoft Interix 6.0 build 10....