Vulnerability Description
The DCOM RPC interface for Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to cause network communications via an "alter context" call that contains additional data, aka the "Object Identity Vulnerability."
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows 2000 | All versions |
| Microsoft | Windows 2003 Server | r2 |
| Microsoft | Windows Nt | 4.0 |
| Microsoft | Windows Xp | All versions |
References
- http://secunia.com/advisories/11065/
- http://www.ciac.org/ciac/bulletins/o-115.shtml
- http://www.kb.cert.org/vuls/id/212892PatchThird Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/10121
- http://www.us-cert.gov/cas/techalerts/TA04-104A.htmlThird Party AdvisoryUS Government Resource
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-01
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15711
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://secunia.com/advisories/11065/
- http://www.ciac.org/ciac/bulletins/o-115.shtml
- http://www.kb.cert.org/vuls/id/212892PatchThird Party AdvisoryUS Government Resource
- http://www.securityfocus.com/bid/10121
FAQ
What is CVE-2004-0124?
CVE-2004-0124 is a vulnerability with a CVSS score of 2.6 (LOW). The DCOM RPC interface for Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to cause network communications via an "alter context" call that contains additional data, aka th...
How severe is CVE-2004-0124?
CVE-2004-0124 has been rated LOW with a CVSS base score of 2.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-0124?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows 2000, Microsoft Windows 2003 Server, Microsoft Windows Nt, Microsoft Windows Xp.