Vulnerabilities > CVE-2003-0908 - Local Privilege Escalation vulnerability in Microsoft Windows Utility Manager
Attack vector
LOCAL Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
The Utility Manager in Microsoft Windows 2000 executes winhlp32.exe with system privileges, which allows local users to execute arbitrary code via a "Shatter" style attack using a Windows message that accesses the context sensitive help button in the GUI, as demonstrated using the File Open dialog in the Help window, a different vulnerability than CVE-2004-0213.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
OS | 1 |
Exploit-Db
description | MS Windows Utility Manager Local SYSTEM Exploit (MS04-011). CVE-2003-0908. Local exploit for windows platform |
id | EDB-ID:271 |
last seen | 2016-01-31 |
modified | 2004-04-15 |
published | 2004-04-15 |
reporter | Cesar Cerrudo |
source | https://www.exploit-db.com/download/271/ |
title | Microsoft Windows Utility Manager Local SYSTEM Exploit MS04-011 |
Nessus
NASL family | Windows : Microsoft Bulletins |
NASL id | SMB_NT_MS04-011.NASL |
description | The remote host is missing a critical Microsoft Windows Security Update (835732). This update fixes various flaws that could allow an attacker to execute arbitrary code on the remote host. A series of worms (Sasser) are known to exploit this vulnerability in the wild. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 12205 |
published | 2004-04-13 |
reporter | This script is Copyright (C) 2004-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/12205 |
title | MS04-011: Microsoft Hotfix (credentialed check) (835732) |
code |
|
Oval
accepted | 2004-06-16T12:00:00.000-04:00 | ||||
class | vulnerability | ||||
contributors |
| ||||
description | The Utility Manager in Microsoft Windows 2000 executes winhlp32.exe with system privileges, which allows local users to execute arbitrary code via a "Shatter" style attack using a Windows message that accesses the context sensitive help button in the GUI, as demonstrated using the File Open dialog in the Help window, a different vulnerability than CVE-2004-0213. | ||||
family | windows | ||||
id | oval:org.mitre.oval:def:1046 | ||||
status | accepted | ||||
submitted | 2004-04-14T12:00:00.000-04:00 | ||||
title | Windows Utility Manager Shatter Message Vulnerability | ||||
version | 64 |
References
- http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0082.html
- http://www.appsecinc.com/resources/alerts/general/04-0001.html
- http://www.ciac.org/ciac/bulletins/o-114.shtml
- http://www.kb.cert.org/vuls/id/526084
- http://www.securiteam.com/windowsntfocus/5LP0C2ACKU.html
- http://www.securityfocus.com/bid/10124
- http://www.us-cert.gov/cas/techalerts/TA04-104A.html
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-011
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15632
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1046