CVE-2004-0728

The Remote Control Client service in Microsoft's Systems Management Server (SMS) 2.50.2726.0 allows remote attackers to cause a denial of service (crash) via a data packet to TCP port 2702 that causes the server to read or write to an invalid memory address.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:P

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact PARTIAL

References

Link	Resource
http://marc.info/?l=bugtraq&m=108983763710315&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/16696
http://marc.info/?l=bugtraq&m=108983763710315&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/16696

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:microsoft:systems_management_server:1.2:::::::*
	cpe:2.3:a:microsoft:systems_management_server:1.2:sp1::::::
	cpe:2.3:a:microsoft:systems_management_server:1.2:sp2::::::
	cpe:2.3:a:microsoft:systems_management_server:1.2:sp3::::::
	cpe:2.3:a:microsoft:systems_management_server:1.2:sp4::::::
	cpe:2.3:a:microsoft:systems_management_server:2.0:::::::*
	cpe:2.3:a:microsoft:systems_management_server:2.0:sp1::::::
	cpe:2.3:a:microsoft:systems_management_server:2.50.2726:::::::*

History

20 Nov 2024, 23:49

Type	Values Removed	Values Added
References	~~() http://marc.info/?l=bugtraq&m=108983763710315&w=2 -~~	() http://marc.info/?l=bugtraq&m=108983763710315&w=2 -
References	~~() https://exchange.xforce.ibmcloud.com/vulnerabilities/16696 -~~	() https://exchange.xforce.ibmcloud.com/vulnerabilities/16696 -

Information

Published : 2004-07-27 04:00

Updated : 2024-11-20 23:49

NVD link : CVE-2004-0728

Mitre link : CVE-2004-0728

CVE.ORG link : CVE-2004-0728

JSON object : View

Products Affected

microsoft

systems_management_server

CWE

NVD-CWE-Other

{"id": "CVE-2004-0728", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2004-07-27T04:00:00.000", "references": [{"url": "http://marc.info/?l=bugtraq&m=108983763710315&w=2", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16696", "source": "cve@mitre.org"}, {"url": "http://marc.info/?l=bugtraq&m=108983763710315&w=2", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16696", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "The Remote Control Client service in Microsoft's Systems Management Server (SMS) 2.50.2726.0 allows remote attackers to cause a denial of service (crash) via a data packet to TCP port 2702 that causes the server to read or write to an invalid memory address."}, {"lang": "es", "value": "El servicio de Cliente de Control Remoto de Microsoft's Systems Management Server (SMS) 2.50.2726.0 permite a atacantes remotos causar una denegaci\u00f3n de servicio (ca\u00edda) mediante un paquete de datos al puerto TCP 2702 que causa que el servidor lea o escriba de una direcci\u00f3n de memoria inv\u00e1lida."}], "lastModified": "2024-11-20T23:49:16.100", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:microsoft:systems_management_server:1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F714FC20-0412-472D-B4A3-EA548EE14E81"}, {"criteria": "cpe:2.3:a:microsoft:systems_management_server:1.2:sp1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "DCC15CE2-708F-4BB2-A4A5-A055B9541C12"}, {"criteria": "cpe:2.3:a:microsoft:systems_management_server:1.2:sp2:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7D334FC1-DA2E-4A78-98A6-81C36713F977"}, {"criteria": "cpe:2.3:a:microsoft:systems_management_server:1.2:sp3:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "2E75A5E5-3C2A-4182-B5C4-FD58579587EF"}, {"criteria": "cpe:2.3:a:microsoft:systems_management_server:1.2:sp4:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "CCD1E3C3-B7AC-411B-8600-A51E2264409B"}, {"criteria": "cpe:2.3:a:microsoft:systems_management_server:2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "43E8A8EF-B54F-4413-9BC8-A6A479951313"}, {"criteria": "cpe:2.3:a:microsoft:systems_management_server:2.0:sp1:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9B010774-CFB9-43F9-B5C4-2FE489B1FBE6"}, {"criteria": "cpe:2.3:a:microsoft:systems_management_server:2.50.2726:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E5081CEE-911E-447A-9457-A5AAF34A8A9F"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}