CVE Vulnerabilities

CVE-2004-1306

Published: Dec 31, 2004 | Modified: Apr 30, 2019
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5.1 MEDIUM
AV:N/AC:H/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Heap-based buffer overflow in winhlp32.exe in Windows NT, Windows 2000 through SP4, Windows XP through SP2, and Windows 2003 allows remote attackers to execute arbitrary code via a crafted .hlp file.

Affected Software

Name Vendor Start Version End Version
Windows_2000 Microsoft * *
Windows_2003_server Microsoft datacenter_64-bit-sp1_beta_1 (including) datacenter_64-bit-sp1_beta_1 (including)
Windows_2003_server Microsoft enterprise (including) enterprise (including)
Windows_2003_server Microsoft enterprise-sp1_beta_1 (including) enterprise-sp1_beta_1 (including)
Windows_2003_server Microsoft enterprise_64-bit (including) enterprise_64-bit (including)
Windows_2003_server Microsoft enterprise_64-bit-sp1_beta_1 (including) enterprise_64-bit-sp1_beta_1 (including)
Windows_2003_server Microsoft r2 (including) r2 (including)
Windows_2003_server Microsoft r2-sp1_beta_1 (including) r2-sp1_beta_1 (including)
Windows_2003_server Microsoft standard (including) standard (including)
Windows_2003_server Microsoft standard-sp1_beta_1 (including) standard-sp1_beta_1 (including)
Windows_2003_server Microsoft web (including) web (including)
Windows_2003_server Microsoft web-sp1_beta_1 (including) web-sp1_beta_1 (including)
Windows_nt Microsoft 4.0 (including) 4.0 (including)
Windows_nt Microsoft 4.0-sp1 (including) 4.0-sp1 (including)
Windows_nt Microsoft 4.0-sp2 (including) 4.0-sp2 (including)
Windows_nt Microsoft 4.0-sp3 (including) 4.0-sp3 (including)
Windows_nt Microsoft 4.0-sp4 (including) 4.0-sp4 (including)
Windows_nt Microsoft 4.0-sp5 (including) 4.0-sp5 (including)
Windows_nt Microsoft 4.0-sp6 (including) 4.0-sp6 (including)
Windows_nt Microsoft 4.0-sp6a (including) 4.0-sp6a (including)
Windows_xp Microsoft * *

References