Vulnerabilities > CVE-2004-0117 - Unspecified vulnerability in Microsoft products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Unknown vulnerability in the H.323 protocol implementation in Windows 98, Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 | |
OS | 5 |
Nessus
NASL family | Windows : Microsoft Bulletins |
NASL id | SMB_NT_MS04-011.NASL |
description | The remote host is missing a critical Microsoft Windows Security Update (835732). This update fixes various flaws that could allow an attacker to execute arbitrary code on the remote host. A series of worms (Sasser) are known to exploit this vulnerability in the wild. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 12205 |
published | 2004-04-13 |
reporter | This script is Copyright (C) 2004-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/12205 |
title | MS04-011: Microsoft Hotfix (credentialed check) (835732) |
code |
|
Oval
accepted 2004-05-25T12:00:00.000-04:00 class vulnerability contributors name Jonathan Baker organization The MITRE Corporation description Unknown vulnerability in the H.323 protocol implementation in Windows 98, Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code. family windows id oval:org.mitre.oval:def:907 status accepted submitted 2004-04-13T12:00:00.000-04:00 title Windows 2000 H.323 Protocol Remote Code Execution Vulnerability version 64 accepted 2015-08-10T04:01:12.151-04:00 class vulnerability contributors name Jonathan Baker organization The MITRE Corporation name Maria Mikhno organization ALTX-SOFT
definition_extensions comment Microsoft Windows Server 2003 is installed oval oval:org.mitre.oval:def:128 description Unknown vulnerability in the H.323 protocol implementation in Windows 98, Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code. family windows id oval:org.mitre.oval:def:946 status accepted submitted 2004-04-13T12:00:00.000-04:00 title Windows Server 2003 H.323 Protocol Remote Code Execution Vulnerability version 71 accepted 2015-08-10T04:01:12.568-04:00 class vulnerability contributors name Jonathan Baker organization The MITRE Corporation name Sudhir Gandhe organization Telos name Shane Shaffer organization G2, Inc. name Maria Mikhno organization ALTX-SOFT
definition_extensions comment Microsoft Windows XP (32-bit) is installed oval oval:org.mitre.oval:def:1353 comment Microsoft Windows XP SP1 (32-bit) is installed oval oval:org.mitre.oval:def:1
description Unknown vulnerability in the H.323 protocol implementation in Windows 98, Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code. family windows id oval:org.mitre.oval:def:964 status accepted submitted 2004-04-13T12:00:00.000-04:00 title Windows XP H.323 Protocol Remote Code Execution Vulnerability version 74
References
- http://www.ciac.org/ciac/bulletins/o-114.shtml
- http://www.kb.cert.org/vuls/id/353956
- http://www.us-cert.gov/cas/techalerts/TA04-104A.html
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-011
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15710
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A907
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A946
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A964