Vulnerability Name:

CVE-2003-0910 (CCN-15707)

Assigned:2003-11-04
Published:2004-04-13
Updated:2018-10-12
Summary:The NtSetLdtEntries function in the programming interface for the Local Descriptor Table (LDT) in Windows NT 4.0 and Windows 2000 allows local attackers to gain access to kernel memory and execute arbitrary code via an expand-down data segment descriptor descriptor that points to protected memory.
CVSS v3 Severity:9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
7.2 High (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Privileges
References:Source: MITRE
Type: CNA
CVE-2003-0910

Source: FULLDISC
Type: UNKNOWN
20040413 EEYE: Windows Expand-Down Data Segment Local Privilege Escalation

Source: CCN
Type: CIAC Information Bulletin O-114
Microsoft Security Update for Microsoft Windows [REVISED 25 Jun 2004]

Source: CIAC
Type: UNKNOWN
O-114

Source: EEYE
Type: Patch, Vendor Advisory
AD20040413D

Source: CCN
Type: US-CERT VU#122076
Microsoft Windows fails to properly create entries in the Local Descriptor Table (LDT)

Source: CERT-VN
Type: Patch, Third Party Advisory, US Government Resource
VU#122076

Source: CCN
Type: Microsoft Security Bulletin MS04-011
Security Update for Microsoft Windows (835732)

Source: BID
Type: UNKNOWN
10122

Source: CCN
Type: BID-10122
Microsoft Windows Local Descriptor Table Local Privilege Escalation Vulnerability

Source: CERT
Type: Third Party Advisory, US Government Resource
TA04-104A

Source: CCN
Type: Internet Security Systems Security Alert, April 13, 2004
Multiple Vulnerabilities in Microsoft Products

Source: MS
Type: UNKNOWN
MS04-011

Source: XF
Type: UNKNOWN
win-ldt-gain-privileges(15707)

Source: XF
Type: UNKNOWN
win-ldt-gain-privileges(15707)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:890

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:911

Vulnerable Configuration:Configuration 1:
  • cpe:/o:microsoft:windows_2000:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:911
    V
    		Windows NT Local Descriptor Table Kernel Access Vulnerability
    2008-03-24
    oval:org.mitre.oval:def:890
    V
    		Windows 2000 Local Descriptor Table Kernel Access Vulnerability
    2004-05-25
    BACK
    microsoft windows 2000 *
    microsoft windows nt 4.0
    microsoft windows nt 4.0
    microsoft windows 2000 *