This CPE summary could be partial or incomplete. Please contact us for a detailed listing.

Summary

Detail
Vendor Microsoft First view 2014-11-11
Product Windows Server 2003 Last view 2014-11-11
Version * Type Os
Update sp2  
Edition *  
Language *  
Sofware Edition *  
Target Software *  
Target Hardware x86  
Other *  
 
CPE Product cpe:2.3:o:microsoft:windows_server_2003

Activity : Overall

Related : CVE

  Date Alert Description
9.3 2014-11-11 CVE-2014-4077

Microsoft Windows Server 2003 SP2, Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, and Office 2007 SP3, when IMJPDCT.EXE (aka IME for Japanese) is installed, allow remote attackers to bypass a sandbox protection mechanism via a crafted PDF document, aka "Microsoft IME (Japanese) Elevation of Privilege Vulnerability," as exploited in the wild in 2014.

7.2 2014-11-11 CVE-2014-4076

Microsoft Windows Server 2003 SP2 allows local users to gain privileges via a crafted IOCTL call to (1) tcpip.sys or (2) tcpip6.sys, aka "TCP/IP Elevation of Privilege Vulnerability."

CWE : Common Weakness Enumeration

%idName
100% (2) CWE-264 Permissions, Privileges, and Access Controls

Information Assurance Vulnerability Management (IAVM)

id Description
2014-A-0174 Microsoft TCP/IP Privilege Escalation Vulnerability
Severity: Category II - VMSKEY: V0057385
2014-A-0179 Microsoft Input Method Editor (IME) Privilege Escalation Vulnerability
Severity: Category I - VMSKEY: V0057395

Snort® IPS/IDS

Date Description
2014-12-11 Microsoft Windows tcpip.sys null pointer dereference attempt
RuleID : 32490 - Type : OS-WINDOWS - Revision : 3
2014-12-11 Microsoft Windows tcpip.sys null pointer dereference attempt
RuleID : 32489 - Type : OS-WINDOWS - Revision : 3

Nessus® Vulnerability Scanner

id Description
2014-11-12 Name: The remote Windows host is affected by an elevation of privilege vulnerability.
File: smb_nt_ms14-070.nasl - Type: ACT_GATHER_INFO
2014-11-12 Name: The remote Windows host is affected by a privilege escalation vulnerability.
File: smb_nt_ms14-078.nasl - Type: ACT_GATHER_INFO