PT-2004-1931 · Microsoft · Windows Nt 4.0 Terminal Server Edition+1

Kostya Kortchinsky

Publicado

2004-12-15

Atualizado

2018-10-12

CVE-2004-0899

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:N/I:N/A:P

Name of the Vulnerable Software and Affected Versions: Microsoft Windows NT 4.0 Server and Terminal Server Edition

Description: The issue is related to the DHCP Server service, where it fails to properly validate the length of certain messages when DHCP logging is enabled. This allows remote attackers to cause a denial of service, resulting in an application crash, by sending a malformed DHCP message.

Recommendations: For Microsoft Windows NT 4.0 Server and Terminal Server Edition, consider disabling DHCP logging as a temporary workaround to minimize the risk of exploitation. Restrict access to the DHCP Server service to prevent remote attackers from sending malformed messages.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2004-0899

Produtos afetados

Windows Nt 4.0 Server

Windows Nt 4.0 Terminal Server Edition

PT-2004-1931 · Microsoft · Windows Nt 4.0 Terminal Server Edition+1

CVE-2004-0899

Identificadores relacionados

Produtos afetados

Referências · 5