Vulnerability Note VU#783748

Microsoft Windows Virtual DOS Machine (VDM) contains null pointer dereference

Overview

Microsoft Windows NT4.0 and Windows 2000 contain a vulnerability that could permit a local user to gain elevated privileges on the system.

I. Description

Microsoft Windows NT4.0 and Windows 2000 provide an Virtual DOS Machine (VDM) to support 16-bit legacy operations and applications. A vulnerability in the implementation of the VDM may lead to the dereferencing of a NULL pointer. This situation occurs when 16-bit code is executed without first initializing a VDM.

For more details, please see Microsoft Security Bulletin MS04-011 and eEye Digital Security Advisory [AD20040413E].

II. Impact

A local user may be able to gain elevated privileges on the system.

III. Solution

Apply a patch from the vendor

Microsoft Security Bulletin MS04-011 contains patch information to resolve this issue.

Systems Affected

Vendor	Status	Date Notified	Date Updated
Microsoft Corporation	Vulnerable	14-Apr-2004

References

http://www.eeye.com/html/Research/Advisories/AD20040413E.html
http://www.microsoft.com/technet/security/bulletin/ms04-011.mspx

Credit

Thanks to Microsoft and eEye Digital Security for reporting this vulnerability.

This document was written by Jason A Rafail.

Other Information

Date Public:	2004-04-13
Date First Published:	2004-04-14
Date Last Updated:	2004-04-14
CERT Advisory:
CVE-ID(s):	CAN-2004-0118
NVD-ID(s):	CAN-2004-0118
US-CERT Technical Alerts:
Metric:	8.66
Document Revision:	2

If you have feedback, comments, or additional information about this vulnerability, please send us email.

Get Adobe Reader