MS04-042: Windows NT Multiple DHCP Vulnerabilities (885249) (uncredentialed check)

Critical Nessus Plugin ID 20368


Arbitrary code can be executed on the remote host through the DHCP service.


The remote host has the Windows DHCP server installed.

There is a flaw in the remote version of this server that may allow an attacker to execute arbitrary code on the remote host with SYSTEM privileges.


Microsoft has released a set of patches for Windows NT.

See Also

Plugin Details

Severity: Critical

ID: 20368

File Name: smb_kb885249.nasl

Version: $Revision: 1.22 $

Type: remote

Agent: windows

Family: Windows

Published: 2006/01/03

Modified: 2017/08/30

Dependencies: 10785, 10736

Risk Information

Risk Factor: Critical


Base Score: 10

Temporal Score: 7.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Temporal Vector: CVSS2#E:U/RL:OF/RC:C

Vulnerability Information

CPE: cpe:/o:microsoft:windows

Required KB Items: Host/OS/smb, Services/DCE/6bffd098-a112-3610-9833-46c3f874532d

Exploit Available: false

Exploit Ease: No known exploits are available

Vulnerability Publication Date: 2004/12/14

Reference Information

CVE: CVE-2004-0899, CVE-2004-0900

BID: 11919, 11920

OSVDB: 12371, 12377

MSFT: MS04-042

MSKB: 885249