CVE-2004-0206

Microsoft Windows 2000 - Buffer Overflow

Title source: rule

Description

Network Dynamic Data Exchange (NetDDE) services for Microsoft Windows 98, Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 allows attackers to remotely execute arbitrary code or locally gain privileges via a malicious message or application that involves an "unchecked buffer," possibly a buffer overflow.

Exploits (3)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16371
exploitdb WORKING POC VERIFIED
by houseofdabus · cremotewindows
https://www.exploit-db.com/exploits/734
metasploit WORKING POC GOOD
by pusscat · rubypocwin
https://github.com/rapid7/metasploit-framework/blob/master/modules/exploits/windows/smb/ms04_031_netdde.rb

References (14)

Scores

EPSS 0.8040
EPSS Percentile 99.1%

Details

Status published
Products (5)
microsoft/windows_2000
microsoft/windows_2003_server r2
microsoft/windows_98
microsoft/windows_nt 4.0
microsoft/windows_xp
Published Nov 03, 2004
Tracked Since Feb 18, 2026