CyberSec.Space Logo
Back to CVE Browser

CVE-2004-1290

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0210%
EPSS Percentile14.71th
PublishedJan 10, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

Buffer overflow in the process_moves function in pgn2web.c for pgn2web 0.3 allows remote attackers to execute arbitrary code via a crafted PGN file.

Affected Platforms (CPE)

πŸ“¦
William Hoggarth

Pgn2web

= 0.3

References & Advisories

πŸ”— http://tigger.uic.edu/~jlongs2/holes/pgn2web.txt
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/18554
πŸ”— http://tigger.uic.edu/~jlongs2/holes/pgn2web.txt
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/18554

Related Vulnerabilities

CVE-2004-101210.0

The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execute arb...

CVE-2004-106710.0

Off-by-one error in the mysasl_canon_user function in Cyrus IMAP Server 2.2.9 and earlier leads to a buffer overflow, which may al...

CVE-2004-041810.0

serve_notify in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle empty data lines, which may allow ...

CVE-2004-105010.0

Heap-based buffer overflow in Internet Explorer 6 allows remote attackers to execute arbitrary code via long (1) SRC or (2) NAME a...