10 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
7.3 High
AI Score
Confidence
Low
0.97 High
EPSS
Percentile
99.7%
The WINS service (wins.exe) on Microsoft Windows NT Server 4.0, Windows 2000 Server, and Windows Server 2003 allows remote attackers to write to arbitrary memory locations and possibly execute arbitrary code via a modified memory pointer in a WINS replication packet to TCP port 42, aka the “Association Context Vulnerability.”
marc.info/?l=bugtraq&m=110150370506704&w=2
secunia.com/advisories/13328/
securitytracker.com/id?1012516
support.microsoft.com/kb/890710
www.ciac.org/ciac/bulletins/p-054.shtml
www.immunitysec.com/downloads/instantanea.pdf
www.kb.cert.org/vuls/id/145134
www.osvdb.org/12378
www.securityfocus.com/bid/11763
xforce.iss.net/xforce/alerts/id/184
docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-045
exchange.xforce.ibmcloud.com/vulnerabilities/18259
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1549
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2541
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2734
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3677
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4372
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4831