7.5 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
7.5 High
AI Score
Confidence
Low
0.222 Low
EPSS
Percentile
96.5%
Network Dynamic Data Exchange (NetDDE) services for Microsoft Windows 98, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows attackers to remotely execute arbitrary code or locally gain privileges via a malicious message or application that involves an “unchecked buffer,” possibly a buffer overflow.
marc.info/?l=bugtraq&m=109786703930674&w=2
secunia.com/advisories/12803/
www.kb.cert.org/vuls/id/640488
www.securityfocus.com/bid/11372
docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-031
exchange.xforce.ibmcloud.com/vulnerabilities/16556
exchange.xforce.ibmcloud.com/vulnerabilities/17657
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1852
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2394
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3120
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3242
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4592
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5074
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6788