Buffer Overflow Vulnerability in Microsoft Windows Network Dynamic Data Exchange Services
CVE-2004-0206

Currently unrated

Key Information:

Vendor

Microsoft
Status
Windows Nt
Windows 2000
Windows 2003 Server
Windows 98
Vendor
CVE Published:
3 November 2004

What is CVE-2004-0206?

The Network Dynamic Data Exchange (NetDDE) services in various Microsoft Windows operating systems are susceptible to a buffer overflow vulnerability. This flaw allows attackers to execute arbitrary code remotely or escalate privileges locally by leveraging malicious messages or applications. Due to the unchecked buffer, an attacker can exploit this vulnerability to compromise the integrity of the affected systems. Security updates provided by Microsoft address this issue, ensuring protection against potential exploitation.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/17657
vdb-entryx_refsource_XF
https://oval.cisecurity.org/repository/search/definition/...
vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/...
vdb-entrysignaturex_refsource_OVAL

EPSS Score

80% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.