VDB
CVE-2004-0214
CVE-2004-0214
PUBLISHED
CVSS 10 CRITICAL
Buffer overflow in Microsoft Internet Explorer and Explorer on Windows XP SP1, WIndows 2000, Windows 98, and Windows Me may allow remote malicious servers to cause a denial of service (application crash) and possibly execute arbitrary code via long share names, as demonstrated using Samba.
EPSS 78.25% · 99.0th percentile
Risk Scores
CVSS 2.0
10
EPSS Score
78.25%
99.0th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | * |
| microsoft | windows_me | |
| microsoft | windows_2000 | |
| microsoft | windows_98 | |
| microsoft | internet_explorer | 6.0.2900 |
| microsoft | windows_xp |
Timeline
- Oct 16, 2004 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
- Oct 30, 2023 EPSS Score
- Dec 22, 2023 EPSS Score
References
- 322857 vendor-advisory
- oval:org.mitre.oval:def:2638 vdb
- 1011647 vdb
- oval:org.mitre.oval:def:5307 vdb
- oval:org.mitre.oval:def:1601 vdb
- 10213 vdb
- win-ms04037-patch(17662) vdb
- 5687 vdb
- VU#616200 third-party-advisory
- 20040425 Microsoft's Explorer and Internet Explorer long share name buffer overflow. mailing-list
- oval:org.mitre.oval:def:4345 vdb
- 11482 third-party-advisory
- oval:org.mitre.oval:def:1749 vdb
- win-long-fileshare-bo(15956) vdb
- 20040425 Microsoft's Explorer and Internet Explorer long share name buffer overflow. mailing-list
- http://www.securiteam.com/windowsntfocus/5JP0M1PCKI.html url
- MS04-037 vendor-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2004-0214 advisory
- http://secunia.com/advisories/11482 url
- http://support.microsoft.com/default.aspx?scid=kb;en-us;322857 url