CVE-2004-0900 - Tottery Spots

Description

The DHCP Server service for Microsoft Windows NT 4.0 Server and Terminal Server Edition does not properly validate the length of certain messages which allows remote attackers to execute arbitrary code via a malformed DHCP message aka the \DHCP Request Vulnerability.\

Reference

https://exchange.xforce.ibmcloud.com/vulnerabilities/18342 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4846 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3577 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-042