CVE-2004-0210

HIGH CISA KEV

CVSS v3.1: 7.8 · EPSS: 0.0512 (89.9 percentile) · CISA KEV: Yes

CISA KEVNo user interactionBuffer OverflowVendor advisory ref

Source data as of:

At a glance

Severity
HIGH
CVSS
7.8 v3.1 · NVD
EPSS
0.0512 (89.9 percentile) · FIRST.org
CISA KEV
Yes KEV added: 2022-03-03
Type
Buffer Overflow · NVD CWE
Attack conditions (CVSS vector)
No user interaction · Source: NVD Vector
Affected vendors
microsoft
Published
2004-08-06 · Modified: 2026-04-16
References
Jump to references (6)

CVSS / EPSS / KEV

CVSS v3.1 7.8 / 10 HIGH Source: NVD
EPSS 0.0512 89.9 percentile Source: FIRST.org
CISA KEV Yes KEV added: 2022-03-03 Source: CISA

Source — CVSS: NVD · EPSS: FIRST.org · KEV: CISA. Data & Sources

Description

The POSIX component of Microsoft Windows NT and Windows 2000 allows local users to execute arbitrary code via certain parameters, possibly by modifying message length values and causing a buffer overflow.

Record details

CVE ID
CVE-2004-0210
CVSS (v3.1)
7.8 (HIGH)
Vector
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Exploitability subscore
1.8
Impact subscore
5.9
EPSS
0.0512 (89.9 percentile) — 2026-04-17
CISA KEV
Yes — KEV added: 2022-03-03, Remediation due (CISA): 2022-03-24
Known ransomware use
Unknown
Weakness (CWE)
CWE-120
Affected vendors
microsoft
Affected configurations (CPE)
7
Published
2004-08-06
Modified
2026-04-16
Status
Analyzed

References

Reference URLs as listed by NVD, grouped by a mechanical match on the link's host/pattern. Labels describe the link type only.

Related records

Other records sharing a factual facet, for cross-reference. A descriptive neighbourhood — ordering does not imply priority and is not a recommendation.

Same affected vendor

CVE-2006-2492 HIGH CVSS 8.8 KEV CVE-2002-0367 HIGH CVSS 7.8 KEV CVE-2026-33118 MEDIUM CVSS 4.3

Same weakness type (CWE)

CVE-2006-2492 HIGH CVSS 8.8 KEV CVE-2026-27820 LOW CVSS 1.7

Published the same year

CVE-2004-1464 MEDIUM CVSS 5.9 KEV
← Back to all records