Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0214

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-0214
Last Modified 06 Aug 2013 03:12:32
Published 03 Nov 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0214

Summary

Buffer overflow in Microsoft Internet Explorer and Explorer on Windows XP SP1, WIndows 2000, Windows 98, and Windows Me may allow remote malicious servers to cause a denial of service (application crash) and possibly execute arbitrary code via long share names, as demonstrated using Samba.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000

  • Microsoft Windows 98

  • Microsoft Windows Me

  • Microsoft Windows Xp

Application

  • Microsoft Ie 6.0.2900


References

CERT-VN - VU#616200

XF - win-ms04037-patch(17662)

XF - win-long-fileshare-bo(15956)

BID - 10213

MS - MS04-037

MSKB - 322857

SECTRACK - 1011647

SECUNIA - 11482

FULLDISC - 20040425 Microsoft's Explorer and Internet Explorer long share name buffer overflow.

MISC - http://www.securiteam.com/windowsntfocus/5JP0M1PCKI.html

OSVDB - 5687


Last Updated: 27 May 2016 10:38:31