10
CVE-2004-0574
- EPSS 67.82%
- Veröffentlicht 03.11.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:05:54
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
The Network News Transfer Protocol (NNTP) component of Microsoft Windows NT Server 4.0, Windows 2000 Server, Windows Server 2003, Exchange 2000 Server, and Exchange Server 2003 allows remote attackers to execute arbitrary code via XPAT patterns, possibly related to improper length validation and an "unchecked buffer," leading to off-by-one and heap-based buffer overflows.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Exchange Server Version2000 Update-
Microsoft ≫ Exchange Server Version2003 Update-
Microsoft ≫ Windows 2000 Version- Update-
Microsoft ≫ Windows Nt Version4.0 SwEditionserver
Microsoft ≫ Windows Server 2003 Versionr2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 67.82% | 0.992 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
CWE-787 Out-of-bounds Write
The product writes data past the end, or before the beginning, of the intended buffer.
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5021
http://marc.info/?l=bugtraq&m=109761632831563&w=2
http://www.ciac.org/ciac/bulletins/p-012.shtml
http://www.coresecurity.com/common/showdoc.php?idx=420&idxseccion=10
http://www.kb.cert.org/vuls/id/203126
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-036
https://exchange.xforce.ibmcloud.com/vulnerabilities/17641
https://exchange.xforce.ibmcloud.com/vulnerabilities/17661
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A246
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4392
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5070
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5926