Double Free Vulnerability Impacting Windows NT and Server 2003 by Microsoft
CVE-2004-0123

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Nt; Windows 2000; Windows 98se; Windows 2003 Server
Vendor: CVE Published:; 1 June 2004

Summary

A double free vulnerability has been identified in the ASN.1 library utilized by several Microsoft operating systems. This flaw allows remote attackers to potentially exploit the affected systems by manipulating memory, which may result in denial of service and could enable execution of arbitrary code. The vulnerability affects a range of Windows products, emphasizing the need for patching and enhancing security protocols to mitigate risks associated with unauthorized access.

References

http://www.ciac.org/ciac/bulletins/o-114.shtml

third-party-advisorygovernment-resourcex_refsource_CIAC

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

http://www.securityfocus.com/bid/10118

vdb-entryx_refsource_BID

EPSS Score

48% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 1, 2004
Vulnerability Reserved
Feb 3, 2004