virus logo Intrusion Prevention

MS.Windows.DHCP.Server.Client.Identifier.Buffer.Overflow

description-logoDescription

This indicates a possible exploit of a buffer-overflow vulnerability in Microsoft Windows NT Server and Terminal Server.
The DHCP Server service for Microsoft Windows NT 4.0 Server and Terminal Server Edition does not properly validate the length of certain messages. A remote attacker may send a malformed DHCP message to execute arbitrary code.

affected-products-logoAffected Products

Microsoft Windows NT Terminal Server 4.0 SP6
Microsoft Windows NT Terminal Server 4.0 SP5
Microsoft Windows NT Terminal Server 4.0 SP4
Microsoft Windows NT Terminal Server 4.0 SP3
Microsoft Windows NT Terminal Server 4.0 SP2
Microsoft Windows NT Terminal Server 4.0 SP1
Microsoft Windows NT Terminal Server 4.0 alpha
Microsoft Windows NT Terminal Server 4.0
Microsoft Windows NT Server 4.0 SP6a
Microsoft Windows NT Server 4.0 SP6
Microsoft Windows NT Server 4.0 SP5
Microsoft Windows NT Server 4.0 SP4
Microsoft Windows NT Server 4.0 SP3
Microsoft Windows NT Server 4.0 SP2
Microsoft Windows NT Server 4.0 SP1
Microsoft Windows NT Server 4.0
Microsoft Windows NT Enterprise Server 4.0 SP6a
Microsoft Windows NT Enterprise Server 4.0 SP6
Microsoft Windows NT Enterprise Server 4.0 SP5
Microsoft Windows NT Enterprise Server 4.0 SP4
Microsoft Windows NT Enterprise Server 4.0 SP3
Microsoft Windows NT Enterprise Server 4.0 SP2
Microsoft Windows NT Enterprise Server 4.0 SP1
Microsoft Windows NT Enterprise Server 4.0
Microsoft Windows NT 4.0 SP6a alpha
Microsoft Windows NT 4.0 SP6a
Microsoft Windows NT 4.0 SP6 alpha
Microsoft Windows NT 4.0 SP6
Microsoft Windows NT 4.0 SP5 alpha
Microsoft Windows NT 4.0 SP5
Microsoft Windows NT 4.0 SP4 alpha
Microsoft Windows NT 4.0 SP4
Microsoft Windows NT 4.0 SP3 alpha
Microsoft Windows NT 4.0 SP3 alpha
Microsoft Windows NT 4.0 SP3
Microsoft Windows NT 4.0 SP2 alpha
Microsoft Windows NT 4.0 SP2
Microsoft Windows NT 4.0 SP1 alpha
Microsoft Windows NT 4.0 SP1
Microsoft Windows NT 4.0 alpha
Microsoft Windows NT 4.0

Impact logoImpact

Execution of arbitrary code

recomended-action-logoRecommended Actions

Microsoft has released updates to address this vulnerability in supported versions of the Windows operating system.
Microsoft Windows NT Server 4.0 SP6a
* Microsoft Security Update for Windows NT Server 4.0 (KB885249)
http://www.microsoft.com/downloads/details.aspx?familyid=7CC7F82D-F2A2 -49AA-BF33-897498898EAD&displaylang=en
Microsoft Windows NT Terminal Server 4.0 SP6
* Microsoft Security Update for Windows NT Server 4.0, Terminal Server Edition (KB885249)
http://www.microsoft.com/downloads/details.aspx?familyid=69F3259F-3004 -462C-B2A8-37F65EB78A2D&displaylang=en

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 13439
Created Oct 19, 2006
Updated Nov 15, 2021
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon black-background-circle-icon
CVE ID CVE-2004-0900
Exploit Prediction Score 5.04%
Default Action drop
Active
Affected OS Windows
Affected App Other