CVE-2008-4250

EXPLOITED IN THE WILD

Microsoft Windows 2000 - Code Injection

Title source: rule

Description

The Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, and 7 Pre-Beta allows remote attackers to execute arbitrary code via a crafted RPC request that triggers the overflow during path canonicalization, as exploited in the wild by Gimmiv.A in October 2008, aka "Server Service Vulnerability."

Exploits (10)

exploitdb WORKING POC VERIFIED
by Metasploit · rubyremotewindows
https://www.exploit-db.com/exploits/16362
exploitdb WORKING POC VERIFIED
by Debasis Mohanty · pythonremotewindows
https://www.exploit-db.com/exploits/7132
exploitdb WORKING POC VERIFIED
by Polymorphours · cremotewindows
https://www.exploit-db.com/exploits/7104
exploitdb WORKING POC VERIFIED
by EMM · textremotewindows
https://www.exploit-db.com/exploits/6841
exploitdb WRITEUP VERIFIED
by stephen lawler · textdoswindows
https://www.exploit-db.com/exploits/6824
exploitdb WORKING POC
by ohnozzy · pythonremotewindows
https://www.exploit-db.com/exploits/40279
nomisec WORKING POC 1 stars
by BinRacer · remote
https://github.com/BinRacer/ms08-067.py
nomisec WORKING POC 1 stars
by thunderstrike9090 · poc
https://github.com/thunderstrike9090/Conflicker_analysis_scripts
nomisec WORKING POC
by BinRacer · remote
https://github.com/BinRacer/ms08-067
nomisec WORKING POC
by NoTrustedx · remote
https://github.com/NoTrustedx/Exploit_MS08-067

References (18)

Scores

EPSS 0.9354
EPSS Percentile 99.8%

Details

VulnCheck KEV 2008-10-23
InTheWild.io 2019-02-26
CWE
CWE-94
Status published
Products (5)
microsoft/windows_2000
microsoft/windows_server_2003 (6 CPE variants)
microsoft/windows_server_2008 (3 CPE variants)
microsoft/windows_vista (4 CPE variants)
microsoft/windows_xp (4 CPE variants)
Published Oct 23, 2008
Tracked Since Feb 18, 2026