Vulnerability Name:

CVE-2004-0118 (CCN-15714)

Assigned:2004-04-13
Published:2004-04-13
Updated:2018-10-12
Summary:The component for the Virtual DOS Machine (VDM) subsystem in Windows NT 4.0 and Windows 2000 does not properly validate system structures, which allows local users to access protected kernel memory and execute arbitrary code.
CVSS v3 Severity:9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
7.2 High (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Privileges
References:Source: MITRE
Type: CNA
CVE-2004-0118

Source: FULLDISC
Type: UNKNOWN
20040413 EEYE: Windows VDM TIB Local Privilege Escalation

Source: CCN
Type: CIAC Information Bulletin O-114
Microsoft Security Update for Microsoft Windows [REVISED 25 Jun 2004]

Source: CIAC
Type: UNKNOWN
O-114

Source: EEYE
Type: Patch, Vendor Advisory
AD20040413E

Source: CCN
Type: US-CERT VU#783748
Microsoft Windows Virtual DOS Machine (VDM) contains null pointer dereference

Source: CERT-VN
Type: Patch, Third Party Advisory, US Government Resource
VU#783748

Source: CCN
Type: Microsoft Security Bulletin MS04-011
Security Update for Microsoft Windows (835732)

Source: BID
Type: UNKNOWN
10117

Source: CCN
Type: BID-10117
Microsoft Virtual DOS Machine Local Privilege Escalation Vulnerability

Source: CERT
Type: Third Party Advisory, US Government Resource
TA04-104A

Source: CCN
Type: Internet Security Systems Security Alert, April 13, 2004
Multiple Vulnerabilities in Microsoft Products

Source: MS
Type: UNKNOWN
MS04-011

Source: XF
Type: UNKNOWN
win-vdm-gain-privileges(15714)

Source: XF
Type: UNKNOWN
win-vdm-gain-privileges(15714)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1512

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1718

Vulnerable Configuration:Configuration 1:
  • cpe:/o:microsoft:windows_2000:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2000:*:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:1512
    V
    		Windows Virtual DOS Machine Local Privilege Escalation Vulnerability (Test 1)
    2008-03-24
    oval:org.mitre.oval:def:1718
    V
    		Windows Virtual DOS Machine Local Privilege Escalation Vulnerability (Test 2)
    2004-08-04
    BACK
    microsoft windows 2000 *
    microsoft windows nt 4.0
    microsoft windows nt 4.0
    microsoft windows 2000 *