Vulnerabilities > CVE-2004-2527

CVSS 5.4 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

COMPLETE

network

high complexity

microsoft

NVD

Published: 2004-12-31

Updated: 2017-07-11

Summary

The local and remote desktop login screens in Microsoft Windows XP before SP2 and 2003 allow remote attackers to cause a denial of service (CPU and memory consumption) by repeatedly using the WinKey+"U" key combination, which causes multiple copies of Windows Utility Manager to be loaded more quickly than they can be closed when the copies detect that another instance is running. The DoS flaw affects slower machines and those with less ram quicker than higher specification machines. On very hi-spec machines, the flaw does not seem to be exploitable.

Vulnerable Configurations

Part	Description	Count
OS	Microsoft Microsoft Windows 2003 Server R2 Microsoft Windows XP *	3

References

http://archives.neohapsis.com/archives/fulldisclosure/2004-07/1313.html
http://securitytracker.com/id?1010836
http://www.osvdb.org/8368
https://exchange.xforce.ibmcloud.com/vulnerabilities/16851

Vulnerabilities > CVE-2004-2527 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2004-2527"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2004-2527