CVE-2008-4250
9.8 CRITICALThe Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, and 7 Pre-Bet...
Published: 2008-10-23 · Last updated: 2026-05-21
Severity and scoring
- CVSS
- 9.8 CRITICAL
- Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- CWE
- CWE-119, CWE-94
Affected products
| Vendor | Product |
|---|---|
| microsoft | windows_2000, windows_server_2003, windows_server_2008 |
Description
The Server service in Microsoft Windows 2000 SP4, XP SP2 and SP3, Server 2003 SP1 and SP2, Vista Gold and SP1, Server 2008, and 7 Pre-Beta allows remote attackers to execute arbitrary code via a crafted RPC request that triggers the overflow during path canonicalization, as exploited in the wild by Gimmiv.A in October 2008, aka "Server Service Vulnerability."
Source: NVD
References
- [NVD]https://nvd.nist.gov/vuln/detail/CVE-2008-4250
- [Other]http://blogs.securiteam.com/index.php/archives/1150
- [Other]http://marc.info/?l=bugtraq&m=122703006921213&w=2
- [Patch]http://secunia.com/advisories/32326
- [Other]http://www.kb.cert.org/vuls/id/827267
- [Other]http://www.securityfocus.com/archive/1/497808/100/0/threaded
- [Other]http://www.securityfocus.com/archive/1/497816/100/0/threaded
- [Patch]http://www.securityfocus.com/bid/31874
- [Other]http://www.securitytracker.com/id?1021091
- [Other]http://www.us-cert.gov/cas/techalerts/TA08-297A.html
- [Other]http://www.us-cert.gov/cas/techalerts/TA09-088A.html
- [Vendor advisory]http://www.vupen.com/english/advisories/2008/2902
- [Patch]https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-067
- [Other]https://exchange.xforce.ibmcloud.com/vulnerabilities/46040
- [Other]https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6093
- [Exploit reference]https://www.exploit-db.com/exploits/6824
- [Exploit reference]https://www.exploit-db.com/exploits/6841
- [Exploit reference]https://www.exploit-db.com/exploits/7104
- [Exploit reference]https://www.exploit-db.com/exploits/7132
- [Other]http://blogs.securiteam.com/index.php/archives/1150
- [Other]http://marc.info/?l=bugtraq&m=122703006921213&w=2
- [Patch]http://secunia.com/advisories/32326
- [Other]http://www.kb.cert.org/vuls/id/827267
- [Other]http://www.securityfocus.com/archive/1/497808/100/0/threaded
- [Other]http://www.securityfocus.com/archive/1/497816/100/0/threaded
- [Patch]http://www.securityfocus.com/bid/31874
- [Other]http://www.securitytracker.com/id?1021091
- [Other]http://www.us-cert.gov/cas/techalerts/TA08-297A.html
- [Other]http://www.us-cert.gov/cas/techalerts/TA09-088A.html
- [Vendor advisory]http://www.vupen.com/english/advisories/2008/2902
- [Patch]https://docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-067
- [Other]https://exchange.xforce.ibmcloud.com/vulnerabilities/46040
- [Other]https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6093
- [Exploit reference]https://www.exploit-db.com/exploits/6824
- [Exploit reference]https://www.exploit-db.com/exploits/6841
- [Exploit reference]https://www.exploit-db.com/exploits/7104
- [Exploit reference]https://www.exploit-db.com/exploits/7132
- [Other]https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2008-4250
Related CVEs
Same vendor
- CVE-2026-50507 — Protection mechanism failure in Windows BitLocker allows an unauthorized attacker to bypass a security feature with a physical attack (6.8 MEDIUM)
- CVE-2026-49161 — Improper access control in Microsoft PC Manager allows an authorized attacker to bypass a security feature locally (7.8 HIGH)
- CVE-2026-49160 — Uncontrolled resource consumption in HTTP/2 allows an unauthorized attacker to deny service over a network (7.5 HIGH)
- CVE-2026-48583 — Use after free in Windows Kernel allows an authorized attacker to elevate privileges locally (7.8 HIGH)
- CVE-2026-48578 — Protection mechanism failure in Windows Secure Boot allows an authorized attacker to bypass a security feature locally (7.9 HIGH)
Same CWE
- CVE-2026-12216 — A weakness has been identified in svaarala duktape up to 2.99.99 (5.3 MEDIUM)
- CVE-2026-12209 — A security vulnerability has been detected in RubyLouvre avalon up to 2.2.10 (5.3 MEDIUM)
- CVE-2026-12208 — A weakness has been identified in jsonata-js jsonata up to 2.2.0 (5.3 MEDIUM)
- CVE-2026-12202 — A vulnerability has been found in Intelliants Subrion CMS up to 4.0.3 (2.4 LOW)
- CVE-2026-12200 — A security vulnerability has been detected in Ritlabs TinyWeb Server up to 1.94 on Win32 (7.3 HIGH)