NVD Vulnerability Detail

CVE-2008-4250

Summary	The Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, and 7 Pre-Beta allows remote attackers to execute arbitrary code via a crafted RPC request that triggers the overflow during path canonicalization, as exploited in the wild by Gimmiv.A in October 2008, aka "Server Service Vulnerability."
Summary	El servicio servidor en Microsoft Windows versiones 2000 SP4, XP SP2 y SP3, Server 2003 SP1 y SP2, vista Gold y SP1, Server 2008 y 7 Pre-Beta, permite a los atacantes remotos ejecutar código arbitrario por medio de una petición RPC creada que desencadena el desbordamiento durante una Canonicalización de Path, como explotación en la naturaleza por Gimmiv.A en octubre de 2008, también se conoce como "Server Service Vulnerability"
Publication Date	Oct. 24, 2008, 7 a.m.
Registration Date	Jan. 29, 2021, 1:42 p.m.
Last Update	April 23, 2026, 9:35 a.m.

CVSS2.0 : HIGH
Score	10.0
Vector	AV:N/AC:L/Au:N/C:C/I:C/A:C
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	高
完全性への影響(I)	高
可用性への影響(A)	高
Get all privileges.	はい
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	いいえ

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:microsoft:windows_2000:-:sp4::::::
cpe:2.3:o:microsoft:windows_server_2003:-::::::x64:
cpe:2.3:o:microsoft:windows_server_2003:-:sp1::::::
cpe:2.3:o:microsoft:windows_server_2003:-:sp1:::-::itanium:
cpe:2.3:o:microsoft:windows_server_2003:-:sp2::::::
cpe:2.3:o:microsoft:windows_server_2003:-:sp2:::::itanium:*
cpe:2.3:o:microsoft:windows_server_2003:-:sp2:::::x64:*
cpe:2.3:o:microsoft:windows_server_2008:-::::-::itanium:*
cpe:2.3:o:microsoft:windows_server_2008:-::::-::x64:*
cpe:2.3:o:microsoft:windows_server_2008:-::::-::x86:*
cpe:2.3:o:microsoft:windows_vista:-:::::::*
cpe:2.3:o:microsoft:windows_vista:-::::::x64:
cpe:2.3:o:microsoft:windows_vista:-:sp1::::::
cpe:2.3:o:microsoft:windows_vista:-:sp1:::-::x64:
cpe:2.3:o:microsoft:windows_xp:-:-:::professional::x64:
cpe:2.3:o:microsoft:windows_xp:-:sp2::::::
cpe:2.3:o:microsoft:windows_xp:-:sp2:::professional::x64:
cpe:2.3:o:microsoft:windows_xp:-:sp3::::::

Related information, measures and tools

No	URL	refsource
1	http://blogs.securiteam.com/index.php/archives/1150	secure@microsoft.com
2	http://marc.info/?l=bugtraq&m=122703006921213&w=2	secure@microsoft.com
3	http://secunia.com/advisories/32326	secure@microsoft.com
4	http://www.kb.cert.org/vuls/id/827267	secure@microsoft.com
5	http://www.securityfocus.com/archive/1/497808/100/0/threaded	secure@microsoft.com
6	http://www.securityfocus.com/archive/1/497816/100/0/threaded	secure@microsoft.com
7	http://www.securityfocus.com/bid/31874	secure@microsoft.com
8	http://www.securitytracker.com/id?1021091	secure@microsoft.com
9	http://www.us-cert.gov/cas/techalerts/TA08-297A.html	secure@microsoft.com
10	http://www.us-cert.gov/cas/techalerts/TA09-088A.html	secure@microsoft.com
11	http://www.vupen.com/english/advisories/2008/2902	secure@microsoft.com
12	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-067	secure@microsoft.com
13	https://exchange.xforce.ibmcloud.com/vulnerabilities/46040	secure@microsoft.com
14	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6093	secure@microsoft.com
15	https://www.exploit-db.com/exploits/6824	secure@microsoft.com
16	https://www.exploit-db.com/exploits/6841	secure@microsoft.com
17	https://www.exploit-db.com/exploits/7104	secure@microsoft.com
18	https://www.exploit-db.com/exploits/7132	secure@microsoft.com
19	http://blogs.securiteam.com/index.php/archives/1150	af854a3a-2127-422b-91ae-364da2661108
20	http://marc.info/?l=bugtraq&m=122703006921213&w=2	af854a3a-2127-422b-91ae-364da2661108
21	http://secunia.com/advisories/32326	af854a3a-2127-422b-91ae-364da2661108
22	http://www.kb.cert.org/vuls/id/827267	af854a3a-2127-422b-91ae-364da2661108
23	http://www.securityfocus.com/archive/1/497808/100/0/threaded	af854a3a-2127-422b-91ae-364da2661108
24	http://www.securityfocus.com/archive/1/497816/100/0/threaded	af854a3a-2127-422b-91ae-364da2661108
25	http://www.securityfocus.com/bid/31874	af854a3a-2127-422b-91ae-364da2661108
26	http://www.securitytracker.com/id?1021091	af854a3a-2127-422b-91ae-364da2661108
27	http://www.us-cert.gov/cas/techalerts/TA08-297A.html	af854a3a-2127-422b-91ae-364da2661108
28	http://www.us-cert.gov/cas/techalerts/TA09-088A.html	af854a3a-2127-422b-91ae-364da2661108
29	http://www.vupen.com/english/advisories/2008/2902	af854a3a-2127-422b-91ae-364da2661108
30	https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-067	af854a3a-2127-422b-91ae-364da2661108
31	https://exchange.xforce.ibmcloud.com/vulnerabilities/46040	af854a3a-2127-422b-91ae-364da2661108
32	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6093	af854a3a-2127-422b-91ae-364da2661108
33	https://www.exploit-db.com/exploits/6824	af854a3a-2127-422b-91ae-364da2661108
34	https://www.exploit-db.com/exploits/6841	af854a3a-2127-422b-91ae-364da2661108
35	https://www.exploit-db.com/exploits/7104	af854a3a-2127-422b-91ae-364da2661108
36	https://www.exploit-db.com/exploits/7132	af854a3a-2127-422b-91ae-364da2661108

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-94	コード・インジェクション	https://cwe.mitre.org/data/definitions/94.html

JVN Vulnerability Information

Microsoft Windows の Server サービスにおける RPC リクエストに関する任意のコードを実行される脆弱性

Title	Microsoft Windows の Server サービスにおける RPC リクエストに関する任意のコードを実行される脆弱性
Summary	Microsoft Windows の Server サービスには、RPC リクエストの処理に不備があるため、任意のコードを実行される脆弱性が存在します。
Possible impacts	第三者による巧妙に細工された RPC リクエストによりパスの正規化でオーバーフローが発生し、任意のコードを実行される可能性があります。
Solution	ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date	Oct. 23, 2008, midnight
Registration Date	Nov. 26, 2008, 12:23 p.m.
Last Update	Sept. 11, 2017, 9:45 a.m.

Affected System

マイクロソフト

Microsoft Windows 2000

Microsoft Windows Server 2003

Microsoft Windows Server 2003 (itanium)

Microsoft Windows Server 2003 (x64)

Microsoft Windows Server 2008 (itanium)

Microsoft Windows Server 2008 (x64)

Microsoft Windows Server 2008 (x86)

Microsoft Windows Vista

Microsoft Windows Vista (x64)

Microsoft Windows XP (x64)

Microsoft Windows XP sp3

CVE (情報セキュリティ共通脆弱性識別子)

No	Name	URL
Common Vulnerabilities and Exposures (CVE)
1	CVE-2008-4250	http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-4250
National Vulnerability Database (NVD)
2	CVE-2008-4250	http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-4250

CWE (共通脆弱性タイプ一覧)

No	Name	URL
JVNDB
1	CWE-94	https://jvndb.jvn.jp/ja/cwe/CWE-94.html

ベンダー情報

No	Name	URL
Microsoft Security Advisory
1	958963	http://www.microsoft.com/technet/security/advisory/958963.mspx
Microsoft Security Bulletin
2	MS08-067	http://www.microsoft.com/technet/security/bulletin/MS08-067.mspx
マイクロソフトセキュリティアドバイザリ
3	958963	http://www.microsoft.com/japan/technet/security/advisory/958963.mspx
マイクロソフトセキュリティ情報
4	MS08-067	http://www.microsoft.com/japan/technet/security/bulletin/MS08-067.mspx
富士通セキュリティ情報
5	TA08-297A	http://software.fujitsu.com/jp/security/vulnerabilities/ta08-297a.html
絵でみるセキュリティ情報
6	MS08-067e	http://www.microsoft.com/japan/security/bulletins/MS08-067e.mspx

その他

No	Name	URL
FrSIRT Advisories
1	FrSIRT/ADV-2008-2902	http://www.frsirt.com/english/advisories/2008/2902
ICS-CERT ADVISORY
2	ICSMA-17-215-01	https://ics-cert.us-cert.gov/advisories/ICSMA-17-215-01
IPA 緊急対策情報
3	20081024-ms08-067	http://www.ipa.go.jp/security/ciadr/vul/20081024-ms08-067.html
ISS X-Force Database
4	46040	http://xforce.iss.net/xforce/xfdb/46040
JPCERT 緊急報告
5	JPCERT-AT-2008-0018	http://www.jpcert.or.jp/at/2008/at080018.txt
6	JPCERT-AT-2008-0019	http://www.jpcert.or.jp/at/2008/at080019.txt
JVN
7	JVNTA08-297A	http://jvn.jp/cert/JVNTA08-297A/index.html
JVN Status Tracking Notes
8	JVNTR-2009-06	http://jvn.jp/tr/JVNTR-2009-06/index.html
9	TRTA08-297A	http://jvn.jp/tr/TRTA08-297A
Secunia Advisory
10	SA32326	http://secunia.com/advisories/32326
SecurityFocus
11	31874	http://www.securityfocus.com/bid/31874
US-CERT Cyber Security Alerts
12	SA08-297A	http://www.us-cert.gov/cas/alerts/SA08-297A.html
US-CERT Technical Cyber Security Alert
13	TA08-297A	http://www.us-cert.gov/cas/techalerts/TA08-297A.html
US-CERT Vulnerability Note
14	VU#827267	http://www.kb.cert.org/vuls/id/827267
警察庁 @police
15	20081024_110716	http://www.cyberpolice.go.jp/important/2008/20081024_110716.html

Change Log

No	Changed Details	Date of change
0	[2008年11月26日] 掲載 [2017年09月11日] 参考情報：ICS-CERT ADVISORY (ICSMA-17-215-01) を追加	Feb. 17, 2018, 10:37 a.m.

Configuration1	or higher	or less	more than	less than
cpe:2.3:o:microsoft:windows_2000:-:sp4::::::
cpe:2.3:o:microsoft:windows_server_2003:-::::::x64:
cpe:2.3:o:microsoft:windows_server_2003:-:sp1::::::
cpe:2.3:o:microsoft:windows_server_2003:-:sp1:::-::itanium:
cpe:2.3:o:microsoft:windows_server_2003:-:sp2::::::
cpe:2.3:o:microsoft:windows_server_2003:-:sp2:::::itanium:*
cpe:2.3:o:microsoft:windows_server_2003:-:sp2:::::x64:*
cpe:2.3:o:microsoft:windows_server_2008:-::::-::itanium:*
cpe:2.3:o:microsoft:windows_server_2008:-::::-::x64:*
cpe:2.3:o:microsoft:windows_server_2008:-::::-::x86:*
cpe:2.3:o:microsoft:windows_vista:-:::::::*
cpe:2.3:o:microsoft:windows_vista:-::::::x64:
cpe:2.3:o:microsoft:windows_vista:-:sp1::::::
cpe:2.3:o:microsoft:windows_vista:-:sp1:::-::x64:
cpe:2.3:o:microsoft:windows_xp:-:-:::professional::x64:
cpe:2.3:o:microsoft:windows_xp:-:sp2::::::
cpe:2.3:o:microsoft:windows_xp:-:sp2:::professional::x64:
cpe:2.3:o:microsoft:windows_xp:-:sp3::::::