CVE-2004-0124

CVE Database · CVE-2004-0124

CVE-2004-0124

· N/AModified

CVSS v3.1

N/A

EPSS

21.98%

Published

Jun 1, 2004

Modified

Apr 15, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The DCOM RPC interface for Microsoft Windows NT 4.0, 2000, XP, and Server 2003 allows remote attackers to cause network communications via an "alter context" call that contains additional data, aka the "Object Identity Vulnerability."

Affected Products (7)

microsoft · windows_2000vulnerable

microsoft · windows_2003_servervulnerable

microsoft · windows_ntvulnerable

microsoft · windows_xpvulnerable

References (20)

http://secunia.com/advisories/11065/

http://www.ciac.org/ciac/bulletins/o-115.shtml

http://www.kb.cert.org/vuls/id/212892

PatchThird Party AdvisoryUS Government Resource

http://www.securityfocus.com/bid/10121

http://www.us-cert.gov/cas/techalerts/TA04-104A.html

Third Party AdvisoryUS Government Resource

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-012

https://exchange.xforce.ibmcloud.com/vulnerabilities/15711

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1041

KEV Catalog EPSS Scores Vendors All CVEs