CVE-2004-0901
CRITICAL
10.0
CVSS Severity Score
Vulnerability Description
Microsoft Word for Windows 6.0 Converter (MSWRD632.WPC), as used in WordPad, does not properly validate certain data lengths, which allows remote attackers to execute arbitrary code via a .wri, .rtf, and .doc file sent by email or malicious web site, aka "Font Conversion Vulnerability," a different vulnerability than CVE-2004-0571.
Affected Platforms (CPE)
💻
Microsoft
Windows 2000
All versions💻
Microsoft
Windows 2000
All versions💻
Microsoft
Windows 2000
All versions💻
Microsoft
Windows 2000
All versions💻
Microsoft
Windows 2000
All versions💻
Microsoft
Windows 2003 Server
= enterprise💻
Microsoft
Windows 2003 Server
= enterprise_64-bit💻
Microsoft
Windows 2003 Server
= r2💻
Microsoft
Windows 2003 Server
= r2💻
Microsoft
Windows 2003 Server
= standard💻
Microsoft
Windows 2003 Server
= web💻
Microsoft
Windows 98
All versions💻
Microsoft
Windows 98se
All versions💻
Microsoft
Windows Me
All versions💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Nt
= 4.0💻
Microsoft
Windows Xp
All versions💻
Microsoft
Windows Xp
All versions💻
Microsoft
Windows Xp
All versions💻
Microsoft
Windows Xp
All versions💻
Microsoft
Windows Xp
All versions💻
Microsoft