Vulnerability Name:

CVE-2003-0908 (CCN-15632)

Assigned:2003-11-04
Published:2004-04-13
Updated:2018-10-12
Summary:The Utility Manager in Microsoft Windows 2000 executes winhlp32.exe with system privileges, which allows local users to execute arbitrary code via a "Shatter" style attack using a Windows message that accesses the context sensitive help button in the GUI, as demonstrated using the File Open dialog in the Help window, a different vulnerability than CVE-2004-0213.
CVSS v3 Severity:9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
7.2 High (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Privileges
References:Source: VULNWATCH
Type: UNKNOWN
20040414 [SHATTER Team Security Alert] Microsoft Windows Utility Manager Vulnerability

Source: MITRE
Type: CNA
CVE-2003-0908

Source: MISC
Type: Patch, Vendor Advisory
http://www.appsecinc.com/resources/alerts/general/04-0001.html

Source: CCN
Type: CIAC Information Bulletin O-114
Microsoft Security Update for Microsoft Windows

Source: CIAC
Type: UNKNOWN
O-114

Source: CCN
Type: US-CERT VU#526084
Microsoft Windows Utility Manager contains vulnerability in the way it launches applications

Source: CERT-VN
Type: Patch, Third Party Advisory, US Government Resource
VU#526084

Source: CCN
Type: Microsoft Security Bulletin MS04-011
Security Update for Microsoft Windows (835732)

Source: CCN
Type: SecuriTeam Mailing List, Windows NT focus 18 Apr 2004
Microsoft Windows Utility Manager Vulnerability (MS04-11)

Source: MISC
Type: UNKNOWN
http://www.securiteam.com/windowsntfocus/5LP0C2ACKU.html

Source: BID
Type: UNKNOWN
10124

Source: CCN
Type: BID-10124
Microsoft Windows Utility Manager Local Privilege Escalation Vulnerability

Source: CERT
Type: Third Party Advisory, US Government Resource
TA04-104A

Source: CCN
Type: Internet Security Systems Security Alert, April 13, 2004
Multiple Vulnerabilities in Microsoft Products

Source: MS
Type: UNKNOWN
MS04-011

Source: XF
Type: UNKNOWN
win2k-utilitymgr-gain-privileges(15632)

Source: XF
Type: UNKNOWN
win2k-utilitymgr-gain-privileges(15632)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1046

Vulnerable Configuration:Configuration 1:
  • cpe:/o:microsoft:windows_2000:*:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:microsoft:windows_2000:*:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:1046
    V
    		Windows Utility Manager Shatter Message Vulnerability
    2004-06-16
    BACK
    microsoft windows 2000 *
    microsoft windows 2000 *