CVE-2004-0118
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2004-0118
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The component for the Virtual DOS Machine (VDM) subsystem in Windows NT 4.0 and Windows 2000 does not properly validate system structures, which allows local users to access protected kernel memory and execute arbitrary code.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Windows VDM TIB本地权限提升漏洞(MS04-011)
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Windows是微软开发的视窗操作系统。 Windows内核支持的虚拟DOS机存在问题,本地攻击者可以利用这个漏洞提升权限。 问题存在于支持16位代码的虚拟DOS机中,通过使处理机在Virtual86模式没有对进程进行初始化VDM就执行代码,在WIndows 2000内核中会引起废弃NULL指针,如果内存分配在虚拟地址0实际。通过在VDM数据地址上提供特殊的数据,可能写内核内存中的任意内容,导致权限提升。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2004-0118
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2004-0118
Please Login to view more intelligence information
- http://www.ciac.org/ciac/bulletins/o-114.shtmlthird-party-advisorygovernment-resourcex_refsource_CIAC
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-011vendor-advisoryx_refsource_MS
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1512vdb-entrysignaturex_refsource_OVAL
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1718vdb-entrysignaturex_refsource_OVAL
- http://lists.grok.org.uk/pipermail/full-disclosure/2004-April/020070.htmlmailing-listx_refsource_FULLDISC
- https://nvd.nist.gov/vuln/detail/CVE-2004-0118
Same Patch Batch · n/a · 2004-04-16 · 30 CVEs total
| CVE-2004-0119 | Microsoft Windows Negotiate SSP 代码问题漏洞 | |
| CVE-2004-0403 | KAME Racoon畸形ISAKMP包远程拒绝服务漏洞 | |
| CVE-2004-0391 | Cisco WLSE和HSE设备默认用户名和密码漏洞 | |
| CVE-2004-0388 | Oracle MySQL 安全漏洞 | |
| CVE-2004-0387 | RealNetworks RealOne Player/RealPlayer Remote R3T文件基于栈的缓冲区溢出漏洞 | |
| CVE-2004-0385 | Oracle 9iAS/10g应用服务器WEB缓冲远程堆溢出漏洞 | |
| CVE-2004-0197 | Microsoft Jet数据库引擎远程任意指令漏洞(MS04-014) | |
| CVE-2004-0180 | CVS客户端RCS Diff客户端文件覆盖漏洞 | |
| CVE-2004-0179 | Neon WebDAV Client 库格式化字符串漏洞 | |
| CVE-2004-0178 | Linux Kernel存在多个安全漏洞 | |
| CVE-2004-0177 | Linux Kernel EXT3文件系统信息泄露漏洞 | |
| CVE-2004-0155 | Racoon IKE守护程序未授权X.509证书连接漏洞 | |
| CVE-2004-0124 | Microsoft RPC对象身份信息泄露漏洞(MS04-012) | |
| CVE-2004-0123 | Microsoft ASN.1两次释放堆内存破坏漏洞(MS04-011) | |
| CVE-2004-0120 | Microsoft Windows SSL远程拒绝服务漏洞(MS04-011) | |
| CVE-2002-0385 | Vignette StoryServer堆栈内存信息泄露漏洞 | |
| CVE-2004-0117 | Microsoft Windows H.323任意代码执行漏洞(MS04-011) | |
| CVE-2004-0116 | Microsoft DCOM RPC内存泄露远程拒绝服务漏洞(MS04-012) | |
| CVE-2004-0109 | Linux Kernel ISO9660文件系统缓冲区溢出漏洞 | |
| CVE-2003-0910 | Windows Expand-Down数据段本地权限提升漏洞(MS04-011) |
Showing top 20 of 30 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8226
Open5GS types.c ogs_pcc_rule_install_flow_from_media denial - CVE-2026-8225
Open5GS delete Endpoint sm-sm.c pcf_npcf_smpolicycontrol_han - CVE-2026-8224
Open5GS PCF context.c pcf_sess_set_ipv6prefix denial of serv - CVE-2026-8223
Open5GS sm-policies Endpoint pcf_sess_sbi_discover_and_send - CVE-2026-8222
Open5GS sm-policies Endpoint nbsf-handler.c pcf_nbsf_managem
V. Comments for CVE-2004-0118
No comments yet