CVE Vulnerabilities

CVE-2004-0894

Published: Jan 10, 2005 | Modified: Apr 30, 2019
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.2 HIGH
AV:L/AC:L/Au:N/C:C/I:C/A:C
RedHat/V2
RedHat/V3
Ubuntu

LSASS (Local Security Authority Subsystem Service) of Windows 2000 Server and Windows Server 2003 does not properly validate connection information, which allows local users to gain privileges via a specially-designed program.

Affected Software

Name Vendor Start Version End Version
Windows_2000 Microsoft * *
Windows_2000 Microsoft * *
Windows_2000 Microsoft * *
Windows_2000 Microsoft * *
Windows_2000 Microsoft * *
Windows_2003_server Microsoft datacenter_64-bit datacenter_64-bit
Windows_2003_server Microsoft enterprise enterprise
Windows_2003_server Microsoft enterprise enterprise
Windows_2003_server Microsoft enterprise_64-bit enterprise_64-bit
Windows_2003_server Microsoft enterprise_64-bit enterprise_64-bit
Windows_2003_server Microsoft r2 r2
Windows_2003_server Microsoft r2 r2
Windows_2003_server Microsoft r2 r2
Windows_2003_server Microsoft standard standard
Windows_2003_server Microsoft standard standard
Windows_2003_server Microsoft web web
Windows_2003_server Microsoft web web
Windows_xp Microsoft * *
Windows_xp Microsoft * *
Windows_xp Microsoft * *
Windows_xp Microsoft * *
Windows_xp Microsoft * *
Windows_xp Microsoft * *
Windows_xp Microsoft * *
Windows_xp Microsoft * *
Windows_xp Microsoft * *

References