10
CVE-2004-0201
- EPSS 63.79%
- Published 06.08.2004 04:00:00
- Last modified 03.04.2025 01:03:51
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
Heap-based buffer overflow in the HtmlHelp program (hh.exe) in HTML Help for Microsoft Windows 98, Me, NT 4.0, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary commands via a .CHM file with a large length field, a different vulnerability than CVE-2003-1041.
Data is provided by the National Vulnerability Database (NVD)
Avaya ≫ Modular Messaging Message Storage Server Versions3400
Microsoft ≫ Windows 2000 Updatesp1
Microsoft ≫ Windows 2000 Updatesp2
Microsoft ≫ Windows 2000 Updatesp3
Microsoft ≫ Windows 2000 Updatesp4
Microsoft ≫ Windows 2003 Server Versionenterprise Edition64-bit
Microsoft ≫ Windows 2003 Server Versionenterprise_64-bit
Microsoft ≫ Windows 2003 Server Versionr2 Edition64-bit
Microsoft ≫ Windows 2003 Server Versionr2 Editiondatacenter_64-bit
Microsoft ≫ Windows 2003 Server Versionstandard Edition64-bit
Microsoft ≫ Windows 2003 Server Versionweb
Microsoft ≫ Windows 98 Updategold
Microsoft ≫ Windows Nt Version4.0 Editionenterprise_server
Microsoft ≫ Windows Nt Version4.0 Editionserver
Microsoft ≫ Windows Nt Version4.0 Editionterminal_server
Microsoft ≫ Windows Nt Version4.0 Editionworkstation
Microsoft ≫ Windows Nt Version4.0 Updatesp1 Editionenterprise_server
Microsoft ≫ Windows Nt Version4.0 Updatesp1 Editionserver
Microsoft ≫ Windows Nt Version4.0 Updatesp1 Editionterminal_server
Microsoft ≫ Windows Nt Version4.0 Updatesp1 Editionworkstation
Microsoft ≫ Windows Nt Version4.0 Updatesp2 Editionenterprise_server
Microsoft ≫ Windows Nt Version4.0 Updatesp2 Editionserver
Microsoft ≫ Windows Nt Version4.0 Updatesp2 Editionterminal_server
Microsoft ≫ Windows Nt Version4.0 Updatesp2 Editionworkstation
Microsoft ≫ Windows Nt Version4.0 Updatesp3 Editionenterprise_server
Microsoft ≫ Windows Nt Version4.0 Updatesp3 Editionserver
Microsoft ≫ Windows Nt Version4.0 Updatesp3 Editionterminal_server
Microsoft ≫ Windows Nt Version4.0 Updatesp3 Editionworkstation
Microsoft ≫ Windows Nt Version4.0 Updatesp4 Editionenterprise_server
Microsoft ≫ Windows Nt Version4.0 Updatesp4 Editionserver
Microsoft ≫ Windows Nt Version4.0 Updatesp4 Editionterminal_server
Microsoft ≫ Windows Nt Version4.0 Updatesp4 Editionworkstation
Microsoft ≫ Windows Nt Version4.0 Updatesp5 Editionenterprise_server
Microsoft ≫ Windows Nt Version4.0 Updatesp5 Editionserver
Microsoft ≫ Windows Nt Version4.0 Updatesp5 Editionterminal_server
Microsoft ≫ Windows Nt Version4.0 Updatesp5 Editionworkstation
Microsoft ≫ Windows Nt Version4.0 Updatesp6 Editionenterprise_server
Microsoft ≫ Windows Nt Version4.0 Updatesp6 Editionserver
Microsoft ≫ Windows Nt Version4.0 Updatesp6 Editionterminal_server
Microsoft ≫ Windows Nt Version4.0 Updatesp6 Editionworkstation
Microsoft ≫ Windows Nt Version4.0 Updatesp6a Editionenterprise_server
Microsoft ≫ Windows Nt Version4.0 Updatesp6a Editionserver
Microsoft ≫ Windows Nt Version4.0 Updatesp6a Editionworkstation
Microsoft ≫ Windows Xp Edition64-bit
Microsoft ≫ Windows Xp Editionhome
Microsoft ≫ Windows Xp Updategold Editionprofessional
Microsoft ≫ Windows Xp Updatesp1 Edition64-bit
Microsoft ≫ Windows Xp Updatesp1 Editionhome
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 63.79% | 0.984 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|