CVE-2003-0908
Microsoft Windows Utility Manager - Local Privilege Escalation (MS04-011)
Severity Score
7.2
*CVSS v2
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
1
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The Utility Manager in Microsoft Windows 2000 executes winhlp32.exe with system privileges, which allows local users to execute arbitrary code via a "Shatter" style attack using a Windows message that accesses the context sensitive help button in the GUI, as demonstrated using the File Open dialog in the Help window, a different vulnerability than CVE-2004-0213.
Utility Manager enMicrosoft Windows 2000 ejecuta winhlp32.exe con privilegios de sistema, lo que permite a usuarios locales ejecutar código de su elección mediante un ataque de estilo "shatter" (hacer añícos) usando mensajes de Windows, como se ha demostrado usando el diálogo de apertura de ficheor en la ventana de ayuda.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2003-11-04 CVE Reserved
- 2004-04-15 First Exploit
- 2004-04-16 CVE Published
- 2023-10-23 EPSS Updated
- 2024-08-08 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
CWE
CAPEC
References (11)
| URL | Tag | Source |
|---|---|---|
| http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0082.html | Mailing List | |
| http://www.ciac.org/ciac/bulletins/o-114.shtml | Government Resource | |
| http://www.securiteam.com/windowsntfocus/5LP0C2ACKU.html | X_refsource_misc | |
| http://www.securityfocus.com/bid/10124 | Vdb Entry | |
| http://www.us-cert.gov/cas/techalerts/TA04-104A.html | Third Party Advisory | |
| https://exchange.xforce.ibmcloud.com/vulnerabilities/15632 | Vdb Entry | |
| https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1046 | Signature |
| URL | Date | SRC |
|---|---|---|
| https://www.exploit-db.com/exploits/271 | 2004-04-15 |
| URL | Date | SRC |
|---|---|---|
| http://www.appsecinc.com/resources/alerts/general/04-0001.html | 2018-10-12 | |
| http://www.kb.cert.org/vuls/id/526084 | 2018-10-12 |
| URL | Date | SRC |
|---|---|---|
| https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-011 | 2018-10-12 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Microsoft Search vendor "Microsoft" | Windows 2000 Search vendor "Microsoft" for product "Windows 2000" | * | - |
Affected
| ||||||