CVE-2004-0900 : The DHCP Server service for Microsoft Windows NT 4.0 Server and Terminal Server

The DHCP Server service for Microsoft Windows NT 4.0 Server and Terminal Server Edition does not properly validate the length of certain messages, which allows remote attackers to execute arbitrary code via a malformed DHCP message, aka the "DHCP Request Vulnerability."

Published 2005-01-10 05:00:00

Updated 2025-04-03 01:03:51

Source MITRE

View at NVD, CVE.org

Vulnerability category: Execute code

Products affected by CVE-2004-0900

Microsoft » Windows Nt » Version: 4.0 Update SP1
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:*:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP2
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:*:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0
cpe:2.3:o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP3
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:*:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP4
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:*:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP5
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:*:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Terminal Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:*:terminal_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:*:server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP6
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:*:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP2 Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP3 Alpha Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:alpha:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update Sp6a
cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:*:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update Sp6a Alpha Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:alpha:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP2 Alpha Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:alpha:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP6 Alpha Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:alpha:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP1 Alpha Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:alpha:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP5 Alpha Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:alpha:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Alpha Edition
cpe:2.3:o:microsoft:windows_nt:4.0:*:alpha:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP4 Alpha Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:alpha:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP1 Terminal Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:terminal_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP2 Enterprise Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:enterprise_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP4 Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP6 Enterprise Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:enterprise_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP6 Terminal Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:terminal_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP2 Terminal Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:terminal_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP3 Enterprise Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:enterprise_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP3 Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update Sp6a Enterprise Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:enterprise_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update Sp6a Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP1 Enterprise Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:enterprise_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP1 Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP5 Enterprise Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:enterprise_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP5 Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP5 Terminal Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:terminal_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Enterprise Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:*:enterprise_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP3 Terminal Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:terminal_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP4 Enterprise Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:enterprise_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP4 Terminal Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:terminal_server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Update SP6 Server Edition
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:server:*:*:*:*:*
Matching versions
Microsoft » Windows Nt » Version: 4.0 Terminal Server Alpha Edition
cpe:2.3:o:microsoft:windows_nt:4.0:*:terminal_server_alpha:*:*:*:*:*
Matching versions

Exploit prediction scoring system (EPSS) score for CVE-2004-0900

EPSS FAQ

41.50%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 97 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2004-0900

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source	First Seen
10.0	HIGH	AV:N/AC:L/Au:N/C:C/I:C/A:C	10.0	10.0	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Complete Integrity Impact: Complete Availability Impact: Complete

References for CVE-2004-0900

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4846
https://exchange.xforce.ibmcloud.com/vulnerabilities/18342

Microsoft Windows NT DHCP HardwareAddress code execution CVE-2004-0900 Vulnerability Report
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-042

CVEs referencing this url
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3577

Jump to

Vulnerability Details : CVE-2004-0900

Products affected by CVE-2004-0900

Exploit prediction scoring system (EPSS) score for CVE-2004-0900

CVSS scores for CVE-2004-0900

References for CVE-2004-0900