CVE-2004-0214

Description

Buffer overflow in Microsoft Internet Explorer and Explorer on Windows XP SP1, WIndows 2000, Windows 98, and Windows Me may allow remote malicious servers to cause a denial of service (application crash) and possibly execute arbitrary code via long share names, as demonstrated using Samba.

Related CPE's

Could not find any relations

References

20040425 Microsoft's Explorer and Internet Explorer long share name buffer overflow.

Vendor Advisory

20040425 Microsoft's Explorer and Internet Explorer long share name buffer overflow.

Vendor Advisory

322857

10213

11482

VU#616200

US Government Resource

1011647

http://www.securiteam.com/windowsntfocus/5JP0M1PCKI.html

5687

win-ms04037-patch(17662)

win-long-fileshare-bo(15956)

oval:org.mitre.oval:def:5307

oval:org.mitre.oval:def:4345

oval:org.mitre.oval:def:2638

oval:org.mitre.oval:def:1749

oval:org.mitre.oval:def:1601

MS04-037

CvssV3 impact

Could not find any metrics

CvssV2 impact

Version

2.0

VectorString

AV:N/AC:L/Au:N/C:C/I:C/A:C

AccessVector

NETWORK

AccessComplexity

LOW

Authentication

NONE

ConfidentialityImpact

COMPLETE

IntegrityImpact

COMPLETE

AvailabilityImpact

COMPLETE

BaseScore

10

Created by Yello
About Severity.io