Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0897

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-0897
Last Modified 10 Sep 2008 03:28:11
Published 11 Jan 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0897

Summary

The Indexing Service for Microsoft Windows XP and Server 2003 does not properly validate the length of a message, which allows remote attackers to execute arbitrary code via a buffer overflow attack.

Vulnerable Systems

Operating System

  • Microsoft Windows 2003 Server R2

  • Microsoft Windows Xp


References

CERT-VN - VU#657118

MS - MS05-003

CIAC - P-095

BID - 12228

SECTRACK - 1012833

SECUNIA - 13802


Last Updated: 27 May 2016 10:38:48