| Vulnerability Name: | CVE-2004-1623 (CCN-17864) | ||||||||
| Assigned: | 2004-10-22 | ||||||||
| Published: | 2004-10-22 | ||||||||
| Updated: | 2017-07-11 | ||||||||
| Summary: | The WAV file property handler in Windows XP SP1 allows remote attackers to cause a denial of service (infinite loop in Explorer) via a WAV file with an invalid file header whose fmt chunk length is set to 0xFFFFFFFF. | ||||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L)
| ||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
| ||||||||
| Vulnerability Type: | CWE-Other | ||||||||
| Vulnerability Consequences: | Denial of Service | ||||||||
| References: | Source: CCN Type: Full-Disclosure Mailing List, Thu Oct 21 2004 - 18:47:16 CDT [Full-Disclosure] [HV-LOW] Unsafe WAV header handling can cause DoS on Windows Source: MITRE Type: CNA CVE-2004-1623 Source: BUGTRAQ Type: UNKNOWN 20041021 [HV-LOW] Unsafe WAV header handling can cause DoS on Windows Source: CCN Type: SECTRACK ID: 1011880 Microsoft Windows XP Error in Explorer in Processing WAV Files Lets Remote Users Deny Service Source: SECTRACK Type: UNKNOWN 1011880 Source: MISC Type: Exploit, Vendor Advisory http://www.hexview.com/docs/20041021-1.txt Source: OSVDB Type: UNKNOWN 11053 Source: CCN Type: OSVDB ID: 11053 Microsoft Windows XP Explorer WAV Parsing DoS Source: BID Type: Exploit, Vendor Advisory 11503 Source: CCN Type: BID-11503 Microsoft Windows XP WAV File Handler Denial Of Service Vulnerability Source: XF Type: UNKNOWN windowsxp-explorer-wav-dos(17864) Source: XF Type: UNKNOWN windowsxp-explorer-wav-dos(17864) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||