CVE-2008-1451
Description
The WINS service on Microsoft Windows 2000 SP4, and Server 2003 SP1 and SP2, does not properly validate data structures in WINS network packets, which allows local users to gain privileges via a crafted packet, aka Memory Overwrite Vulnerability.
Risk Information
Base Score
7.8
MODERATE
Vector
AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
4.773
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Security Update for Windows 2000 (KB948745) | Windows |
| Security Update for Windows Server 2003 (KB948745) x86 based systems | Windows |
| Security Update for Windows Server 2003 (KB948745) x86 based systems for SP2 | Windows |
| Security Update for Windows XP x64 Edition (KB948745) | Windows |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234