CVE Database · CVE-2014-4076
CVSS v3.1
N/A
EPSS
22.67%
Published
Nov 11, 2014
Modified
May 6, 2026
Public PoC / Exploit (3)
All weaponized →Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.
Description
Microsoft Windows Server 2003 SP2 allows local users to gain privileges via a crafted IOCTL call to (1) tcpip.sys or (2) tcpip6.sys, aka "TCP/IP Elevation of Privilege Vulnerability."
Weaknesses (CWE)
Affected Products (3)
References (10)
