CVE-2004-0212

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0300%

EPSS Percentile0.40th

Published2004年8月6日

Last Modified2026年4月16日

Vulnerability Description

Stack-based buffer overflow in the Task Scheduler for Windows 2000 and XP, and Internet Explorer 6 on Windows NT 4.0, allows local or remote attackers to execute arbitrary code via a .job file containing long parameters, as demonstrated using Internet Explorer and accessing a .job file on an anonymous share.

Affected Platforms (CPE)

📦

Avaya

Ip600 Media Servers

All versions

📦

Microsoft

Ie

= 6.0

🔌

Avaya

Definity One Media Server

All versions

🔌

Avaya

S8100

All versions

💻

Avaya

Modular Messaging Message Storage Server

= s3400

💻

Microsoft

Windows 2000

All versions

💻

Microsoft

Windows 2000

All versions

💻

Microsoft

Windows 2000

All versions

💻

Microsoft

Windows 2000

All versions

💻

Microsoft

Windows 2000

All versions

💻

Microsoft

Windows Nt

= 4.0

💻

Microsoft

Windows Nt

= 4.0

💻

Microsoft

Windows Nt

= 4.0

💻

Microsoft

Windows Xp

All versions

💻

Microsoft

Windows Xp

All versions

💻

Microsoft

Windows Xp

All versions

💻

Microsoft

Windows Xp

All versions

💻

Microsoft

Windows Xp

All versions

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=108981273009250&w=2

🔗 http://marc.info/?l=bugtraq&m=108981403025596&w=2

🔗 http://secunia.com/advisories/12060

🔗 http://www.kb.cert.org/vuls/id/228028

🔗 http://www.ngssoftware.com/advisories/mstaskjob.txt

🔗 http://www.us-cert.gov/cas/techalerts/TA04-196A.html

🔗 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-022

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/16591

Vulnerability Description

Affected Platforms (CPE)

Ip600 Media Servers

Ie

Definity One Media Server

S8100

Modular Messaging Message Storage Server

Windows 2000

Windows 2000

Windows 2000

Windows 2000

Windows 2000

Windows Nt

Windows Nt

Windows Nt

Windows Xp

Windows Xp

Windows Xp

Windows Xp

Windows Xp

References & Advisories

関連する脆弱性情報