CVE-2004-1080
Last modified
CVE-2004-1080 is a vulnerability of currently unknown severity. The WINS service (wins.exe) on Microsoft Windows NT Server 4.0, Windows 2000 Server, and Windows Server 2003 allows remote attackers to write to arbitrary memory locations and possibly execute arbitrary code via a modified memory pointer in a WINS replication packet to TCP port 42, aka the "Association Context Vulnerability.". EPSS estimates a 81.70% chance of exploitation in the next 30 days.
Description
The WINS service (wins.exe) on Microsoft Windows NT Server 4.0, Windows 2000 Server, and Windows Server 2003 allows remote attackers to write to arbitrary memory locations and possibly execute arbitrary code via a modified memory pointer in a WINS replication packet to TCP port 42, aka the "Association Context Vulnerability."
Metrics
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows 2000 | All versions |
| Microsoft | Windows 2003 Server | 2000 |
| Microsoft | Windows 2003 Server | 2003 |
| Microsoft | Windows 2003 Server | enterprise |
| Microsoft | Windows 2003 Server | enterprise_64-bit |
| Microsoft | Windows 2003 Server | r2 |
| Microsoft | Windows 2003 Server | standard |
| Microsoft | Windows 2003 Server | web |
| Microsoft | Windows Nt | 4.0 |
References
- http://www.kb.cert.org/vuls/id/145134Patch, Third Party Advisory, US Government Resource
- http://www.securityfocus.com/bid/11763Patch, Vendor Advisory
- http://www.kb.cert.org/vuls/id/145134Patch, Third Party Advisory, US Government Resource
- http://www.securityfocus.com/bid/11763Patch, Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2004-1080?
How severe is CVE-2004-1080?
How do I fix CVE-2004-1080?
Are you affected by CVE-2004-1080?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST