返回 CVE 浏览器

CVE-2004-0209

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.0460%

EPSS Percentile42.94th

Published2004年11月3日

Last Modified2026年4月16日

Vulnerability Description

Unknown vulnerability in the Graphics Rendering Engine processes of Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via (1) Windows Metafile (WMF) or (2) Enhanced Metafile (EMF) image formats that involve "an unchecked buffer."

Affected Platforms (CPE)

💻

Microsoft

Windows 2000

All versions

💻

Microsoft

Windows 2003 Server

= r2

💻

Microsoft

Windows Xp

All versions

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=109829067325779&w=2

🔗 http://www.kb.cert.org/vuls/id/806278

🔗 http://www.securityfocus.com/bid/11375

🔗 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-032

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/16581

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/17658

🔗 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1872

🔗 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2114

相关漏洞威胁

CVE-2000-103410.0

Buffer overflow in the System Monitor ActiveX control in Windows 2000 allows remote attackers to execute arbitrary commands via a ...

CVE-2001-014710.0

Buffer overflow in Windows 2000 event viewer snap-in allows attackers to execute arbitrary commands via a malformed field that is ...

CVE-2000-022210.0

The installation for Windows 2000 does not activate the Administrator password until the system has rebooted, which allows remote ...

CVE-2001-024110.0

Buffer overflow in Internet Printing ISAPI extension in Windows 2000 allows remote attackers to gain root privileges via a long pr...