CVE-2004-0894

Description

LSASS (Local Security Authority Subsystem Service) of Windows 2000 Server and Windows Server 2003 does not properly validate connection information, which allows local users to gain privileges via a specially-designed program.

Related CPE's

Could not find any relations

References

win-lsass-gain-privileges(18340)

oval:org.mitre.oval:def:778

oval:org.mitre.oval:def:4368

oval:org.mitre.oval:def:3325

oval:org.mitre.oval:def:3312

oval:org.mitre.oval:def:2062

oval:org.mitre.oval:def:1888

MS04-044

CvssV3 impact

Could not find any metrics

CvssV2 impact

Version

2.0

VectorString

AV:L/AC:L/Au:N/C:C/I:C/A:C

AccessVector

LOCAL

AccessComplexity

LOW

Authentication

NONE

ConfidentialityImpact

COMPLETE

IntegrityImpact

COMPLETE

AvailabilityImpact

COMPLETE

BaseScore

7.199999809265137

Created by Yello
About Severity.io