10
CVE-2004-0575
- EPSS 60.3%
- Veröffentlicht 03.11.2004 05:00:00
- Zuletzt bearbeitet 16.06.2026 22:05:54
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Integer overflow in DUNZIP32.DLL for Microsoft Windows XP, Windows XP 64-bit Edition, Windows Server 2003, and Windows Server 2003 64-bit Edition allows remote attackers to execute arbitrary code via compressed (zipped) folders that involve an "unchecked buffer" and improper length validation.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Windows 2003 Server Version64-bit
Microsoft ≫ Windows 2003 Server Versionr2
Microsoft ≫ Windows Xp Edition64-bit
Microsoft ≫ Windows Xp Updategold
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 60.3% | 0.99 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 10 | 10 | 10 |
AV:N/AC:L/Au:N/C:C/I:C/A:C
|
http://marc.info/?l=ntbugtraq&m=109767342326300&w=2
http://securitytracker.com/id?1011637
http://www.ciac.org/ciac/bulletins/p-010.shtml
http://www.eeye.com/html/research/advisories/AD20041012A.html
http://www.kb.cert.org/vuls/id/649374
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-034
https://exchange.xforce.ibmcloud.com/vulnerabilities/17624
https://exchange.xforce.ibmcloud.com/vulnerabilities/17659
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1053
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3913
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4276
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A6397