CVE-2004-0124

The DCOM RPC interface for Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to cause network communications via an "alter context" call that contains additional data, aka the "Object Identity Vulnerability."

CVSS v2.0 2.6 LOW

2.6^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:N/AC:H/Au:N/C:P/I:N/A:N

Exploitability : 4.9 / Impact : 2.9

Access Vector NETWORK

Access Complexity HIGH

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://secunia.com/advisories/11065/
http://www.ciac.org/ciac/bulletins/o-115.shtml
http://www.kb.cert.org/vuls/id/212892	Patch Third Party Advisory US Government Resource
http://www.securityfocus.com/bid/10121
http://www.us-cert.gov/cas/techalerts/TA04-104A.html	Third Party Advisory US Government Resource
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-012
https://exchange.xforce.ibmcloud.com/vulnerabilities/15711
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1041
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1062
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1066
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1072
http://secunia.com/advisories/11065/
http://www.ciac.org/ciac/bulletins/o-115.shtml
http://www.kb.cert.org/vuls/id/212892	Patch Third Party Advisory US Government Resource
http://www.securityfocus.com/bid/10121
http://www.us-cert.gov/cas/techalerts/TA04-104A.html	Third Party Advisory US Government Resource
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-012
https://exchange.xforce.ibmcloud.com/vulnerabilities/15711
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1041
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1062
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1066
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1072

Configurations

Configuration 1 (hide)

OR	cpe:2.3:o:microsoft:windows_2000::::::::
	cpe:2.3:o:microsoft:windows_2003_server:r2:::::::*
	cpe:2.3:o:microsoft:windows_nt:4.0:::::::*
	cpe:2.3:o:microsoft:windows_nt:4.0::server:::::
	cpe:2.3:o:microsoft:windows_nt:4.0::terminal_server:::::
	cpe:2.3:o:microsoft:windows_nt:4.0::workstation:::::
	cpe:2.3:o:microsoft:windows_xp::gold::::::*

History

No history.

Information

Published : 2004-06-01 04:00

Updated : 2025-04-03 01:03

NVD link : CVE-2004-0124

Mitre link : CVE-2004-0124

CVE.ORG link : CVE-2004-0124

JSON object : View

Products Affected

microsoft

windows_xp
windows_nt
windows_2000
windows_2003_server

CWE

NVD-CWE-Other

2.6 /10