CVE-2004-0201 in Windowsinfo

Summary

Heap-based buffer overflow in the HtmlHelp program (hh.exe) in HTML Help for Microsoft Windows 98, Me, NT 4.0, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary commands via a .CHM file with a large length field, a different vulnerability than CVE-2003-1041.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

03/11/2004

Disclosure

08/06/2004

Moderation

VulDB entry created

Entries

1: VDB-765

CPE

ready

CWE

CWE-122 (Confirmed)

CVSS

8.6

EPSS

0.50676

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2004-0201
NVD	https://nvd.nist.gov/vuln/detail/CVE-2004-0201
CVE Details	https://www.cvedetails.com/cve/CVE-2004-0201/

◂ Previous Overview Next ▸

Do you know our Splunk app?

Download it now for free!