VDB
CVE-2003-0910
CVE-2003-0910
PUBLISHED
CVSS 7.199999809265137 HIGH
The NtSetLdtEntries function in the programming interface for the Local Descriptor Table (LDT) in Windows NT 4.0 and Windows 2000 allows local attackers to gain access to kernel memory and execute arbitrary code via an expand-down data segment descriptor descriptor that points to protected memory.
EPSS 6.01% · 90.9th percentile
Risk Scores
CVSS 2.0
7.199999809265137
EPSS Score
6.01%
90.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| microsoft | windows_nt | 4.0 |
| microsoft | windows_2000 | |
| n/a | n/a | n/a |
Timeline
- Apr 16, 2004 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Oct 30, 2023 EPSS Score
References
- http://www.securityfocus.com/bid/10122 technical
- 20040413 EEYE: Windows Expand-Down Data Segment Local Privilege Escalation mailing-list
- oval:org.mitre.oval:def:911 vdb
- O-114 third-party-advisory
- oval:org.mitre.oval:def:890 vdb
- http://www.us-cert.gov/cas/techalerts/TA04-104A.html advisory
- MS04-011 vendor-advisory
- AD20040413D third-party-advisory
- win-ldt-gain-privileges(15707) vdb
- VU#122076 third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2003-0910 advisory