Summary
A denial of service vulnerability exists in the implementation of the IDirectPlay4 application programming interface (API) of Microsoft DirectPlay because of a lack of robust packet validation.
If a user is running a networked DirectPlay application, an attacker who successfully exploited this vulnerability could cause the DirectPlay application to fail. The user would have to restart the application to resume functionality.
Solution
http://www.microsoft.com/technet/security/bulletin/ms04-016.mspx
Severity
Classification
-
CVE CVE-2004-0202 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Microsoft SQL Server Report Manager Cross Site Scripting Vulnerability (2754849)
- Microsoft .NET Framework XML HMAC Truncation Vulnerability (981343)
- IE VBScript Handling patch (Q318089)
- Active Directory Certificate Services Web Enrollment Elevation of Privilege Vulnerability (2518295)
- Microsoft 'ISATAP' Component Spoofing Vulnerability (978338)