VDB
CVE-2004-0118
CVE-2004-0118
PUBLISHED
CVSS 7.199999809265137 HIGH
The component for the Virtual DOS Machine (VDM) subsystem in Windows NT 4.0 and Windows 2000 does not properly validate system structures, which allows local users to access protected kernel memory and execute arbitrary code.
EPSS 12.57% · 94.1th percentile
Risk Scores
CVSS 2.0
7.199999809265137
EPSS Score
12.57%
94.1th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | * |
| microsoft | windows_2000 | |
| microsoft | windows_nt | 4.0 |
Timeline
- Apr 16, 2004 CVE Published
- Feb 4, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Mar 24, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Oct 23, 2023 EPSS Score
- Oct 30, 2023 EPSS Score
References
- O-114 third-party-advisory
- oval:org.mitre.oval:def:1718 vdb
- VU#783748 third-party-advisory
- win-vdm-gain-privileges(15714) vdb
- AD20040413E third-party-advisory
- MS04-011 vendor-advisory
- 10117 vdb
- TA04-104A third-party-advisory
- oval:org.mitre.oval:def:1512 vdb
- 20040413 EEYE: Windows VDM TIB Local Privilege Escalation mailing-list
- https://nvd.nist.gov/vuln/detail/CVE-2004-0118 advisory