CVE-2005-2127
- EPSS 44.57%
- Published 19.08.2005 04:00:00
- Last modified 03.04.2025 01:03:51
Microsoft Internet Explorer 5.01, 5.5, and 6 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a web page with embedded CLSIDs that reference certain COM objects that are not intended for...
CVE-2004-0848
- EPSS 42.12%
- Published 08.02.2005 05:00:00
- Last modified 03.04.2025 01:03:51
Buffer overflow in Microsoft Office XP allows remote attackers to execute arbitrary code via a link with a URL file location containing long inputs after (1) "%00 (null byte) in .doc filenames or (2) "%0a" (carriage return) in .rtf filenames.
CVE-2004-0200
- EPSS 76.69%
- Published 28.09.2004 04:00:00
- Last modified 03.04.2025 01:03:51
Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to...
- EPSS 70.46%
- Published 20.10.2003 04:00:00
- Last modified 03.04.2025 01:03:51
Heap-based buffer overflow in VBE.DLL and VBE6.DLL of Microsoft Visual Basic for Applications (VBA) SDK 5.0 through 6.3 allows remote attackers to execute arbitrary code via a document with a long ID parameter.