CVE-2004-0567

Current Description

The Windows Internet Naming Service (WINS) in Windows NT Server 4.0 SP 6a, NT Terminal Server 4.0 SP 6, Windows 2000 Server SP3 and SP4, and Windows Server 2003 does not properly validate the computer name value in a WINS packet, which allows remote attackers to execute arbitrary code or cause a denial of service (server crash), which results in an "unchecked buffer" and possibly triggers a buffer overflow, aka the "Name Validation Vulnerability."

Basic Data

PublishedDecember 31, 2004
Last ModifiedApril 30, 2019
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeNVD-CWE-Other
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:L/Au:N/C:P/I:P/A:P
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityLOW
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactPARTIAL
CVSS 2 - Availability ImpactPARTIAL
CVSS 2 - Base Score7.5
SeverityHIGH
Exploitability Score10.0
Impact Score6.4
Obtain All Privilegefalse
Obtain User Privilegetrue
Obtain Other Privilegefalse

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3OSMicrosoftWindows 2000*sp3******
    2.3OSMicrosoftWindows 2000*sp4******
    2.3OSMicrosoftWindows 2003 Server64-bit*******
    2.3OSMicrosoftWindows 2003 Serverr2*******
    2.3OSMicrosoftWindows Nt4.0sp6terminal_server*****
    2.3OSMicrosoftWindows Nt4.0sp6aserver*****

Vulnerable Software List

VendorProductVersions
Microsoft Windows 2000 *
Microsoft Windows 2003 Server 64-bit, r2
Microsoft Windows Nt 4.0

References

NameSourceURLTags
13466http://secunia.com/advisories/13466SECUNIA
1012517http://securitytracker.com/id?1012517SECTRACK
P-054http://www.ciac.org/ciac/bulletins/p-054.shtmlCIACPATCH Vendor Advisory
VU#378160http://www.kb.cert.org/vuls/id/378160CERT-VNPATCH Third Party Advisory US Government Resource
12370http://www.osvdb.org/12370OSVDB
11922http://www.securityfocus.com/bid/11922BID
MS04-045https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-045MS
wins-memory-pointer-hijack(18259)https://exchange.xforce.ibmcloud.com/vulnerabilities/18259XF