ID CVE-2003-0910
Summary The NtSetLdtEntries function in the programming interface for the Local Descriptor Table (LDT) in Windows NT 4.0 and Windows 2000 allows local attackers to gain access to kernel memory and execute arbitrary code via an expand-down data segment descriptor descriptor that points to protected memory.
References
Vulnerable Configurations
  • Microsoft Windows 2000
    cpe:2.3:o:microsoft:windows_2000
  • Microsoft Windows NT 4.0
    cpe:2.3:o:microsoft:windows_nt:4.0
CVSS
Base: 7.2 (as of 01-01-2004 - 00:00)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
LOCAL LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
exploit-db via4
description Microsoft Windows 2000/NT 4 Local Descriptor Table Local Privilege Escalation Vulnerability. CVE-2003-0910. Local exploit for windows platform
id EDB-ID:23989
last seen 2016-02-02
modified 2004-04-18
published 2004-04-18
reporter mslug@safechina.net
source https://www.exploit-db.com/download/23989/
title Microsoft Windows 2000/NT 4 - Local Descriptor Table Local Privilege Escalation Vulnerability
nessus via4
NASL family Windows : Microsoft Bulletins
NASL id SMB_NT_MS04-011.NASL
description The remote host is missing a critical Microsoft Windows Security Update (835732). This update fixes various flaws that could allow an attacker to execute arbitrary code on the remote host. A series of worms (Sasser) are known to exploit this vulnerability in the wild.
last seen 2019-02-21
modified 2018-11-15
plugin id 12205
published 2004-04-13
reporter Tenable
source https://www.tenable.com/plugins/index.php?view=single&id=12205
title MS04-011: Microsoft Hotfix (credentialed check) (835732)
oval via4
  • accepted 2004-05-25T12:00:00.000-04:00
    class vulnerability
    contributors
    name Jonathan Baker
    organization The MITRE Corporation
    description The NtSetLdtEntries function in the programming interface for the Local Descriptor Table (LDT) in Windows NT 4.0 and Windows 2000 allows local attackers to gain access to kernel memory and execute arbitrary code via an expand-down data segment descriptor descriptor that points to protected memory.
    family windows
    id oval:org.mitre.oval:def:890
    status accepted
    submitted 2004-04-13T12:00:00.000-04:00
    title Windows 2000 Local Descriptor Table Kernel Access Vulnerability
    version 63
  • accepted 2008-03-24T04:00:53.973-04:00
    class vulnerability
    contributors
    • name Jonathan Baker
      organization The MITRE Corporation
    • name Jonathan Baker
      organization The MITRE Corporation
    • name Jonathan Baker
      organization The MITRE Corporation
    definition_extensions
    comment Microsoft Windows NT is installed
    oval oval:org.mitre.oval:def:36
    description The NtSetLdtEntries function in the programming interface for the Local Descriptor Table (LDT) in Windows NT 4.0 and Windows 2000 allows local attackers to gain access to kernel memory and execute arbitrary code via an expand-down data segment descriptor descriptor that points to protected memory.
    family windows
    id oval:org.mitre.oval:def:911
    status accepted
    submitted 2004-04-13T12:00:00.000-04:00
    title Windows NT Local Descriptor Table Kernel Access Vulnerability
    version 68
refmap via4
bid 10122
cert TA04-104A
cert-vn VU#122076
ciac O-114
eeye AD20040413D
fulldisc 20040413 EEYE: Windows Expand-Down Data Segment Local Privilege Escalation
ms MS04-011
xf win-ldt-gain-privileges(15707)
Last major update 10-09-2008 - 15:20
Published 01-06-2004 - 00:00
Last modified 12-10-2018 - 17:33
Back to Top