Vulnerability CVE-2004-0209

Vulnerability Name:

CVE-2004-0209 (CCN-16581)

Assigned:

2004-10-12

Published:

2004-10-12

Updated:

2018-10-12

Summary:

Unknown vulnerability in the Graphics Rendering Engine processes of Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via (1) Windows Metafile (WMF) or (2) Enhanced Metafile (EMF) image formats that involve "an unchecked buffer."

CVSS v3 Severity:

10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

CWE-Other

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-2004-0209

Source: BUGTRAQ
Type: UNKNOWN
20041019 [EXPL] (MS04-032) Microsoft Windows XP Metafile (.emf) Heap Overflow

Source: CCN
Type: CIAC Information Bulletin P-008
Microsoft Security Update for Microsoft Windows (840987)

Source: CCN
Type: US-CERT VU#806278
Microsoft Windows contains buffer overflow in processing of WMF and EMF image files

Source: CERT-VN
Type: US Government Resource
VU#806278

Source: CCN
Type: Microsoft Security Bulletin MS04-032
Security Update for Microsoft Windows (840987)

Source: CCN
Type: Microsoft Security Bulletin MS05-018
Vulnerabilities in Windows Kernel Could Allow Elevation of Privilege and Denial of Service (890859)

Source: BID
Type: UNKNOWN
11375

Source: CCN
Type: BID-11375
Microsoft Windows WMF/EMF Image Format Rendering Remote Buffer Overflow Vulnerability

Source: MS
Type: UNKNOWN
MS04-032

Source: XF
Type: UNKNOWN
win-emf-bo(16581)

Source: XF
Type: UNKNOWN
win-emf-bo(16581)

Source: XF
Type: UNKNOWN
win-ms04032-patch(17658)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1872

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:2114

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:2428

Vulnerable Configuration:

Configuration 1:

cpe:/o:microsoft:windows_2000:*:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:r2:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:*:gold:*:*:*:*:*:*

Configuration CCN 1:

cpe:/o:microsoft:windows_98:*:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_98se:*:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_me:*:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows:xp:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2000:-:sp3:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_xp:-:sp1:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2000:-:sp4:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_nt:4.0:sp6a:*:*:server:*:x86:*

OR cpe:/o:microsoft:windows:2003_server::x64:*:*:*:*:*

OR cpe:/o:microsoft:windows_2003_server:*:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_nt:4.0:sp6:*:*:terminal_server:*:x86:*

OR cpe:/o:microsoft:windows_xp:-:sp1:*:*:*:*:x64:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.mitre.oval:def:1872	V	Windows XP Enhanced Metafile Image Format Rendering Buffer Overflow	2004-12-09
oval:org.mitre.oval:def:2114	V	Windows 2000 Enhanced Metafile Image Format Rendering Buffer Overflow	2004-11-17
oval:org.mitre.oval:def:2428	V	Windows XP/Server 2003 (64-Bit) Enhanced Metafile Image Format Rendering Buffer Overflow	2004-11-17

BACK