Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2004-0201

Heap-based buffer overflow in the HtmlHelp program (hh.exe) in HTML Help for Microsoft Windows 98, Me, NT 4.0, 2000, XP, and Server 2003 allows remote attackers to execute arbitrary commands via a .CHM file with a large length field, a different vulnerability than CVE-2003-1041.

Published

2004-08-06T04:00:00.000

Last Modified

2025-04-03T01:03:51.193

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 10.0 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: COMPLETE
Integrity Impact: COMPLETE
Availability Impact: COMPLETE

Exploitability Score

10.0

Impact Score

10.0

Weaknesses

Type: Primary
NVD-CWE-Other

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	avaya	ip600_media_servers	*	Yes
Hardware	avaya	definity_one_media_server	*	Yes
Hardware	avaya	s8100	*	Yes
Operating System	avaya	modular_messaging_message_storage_server	s3400	Yes
Operating System	microsoft	windows_2000	*	Yes
Operating System	microsoft	windows_2000	*	Yes
Operating System	microsoft	windows_2000	*	Yes
Operating System	microsoft	windows_2000	*	Yes
Operating System	microsoft	windows_2000	*	Yes
Operating System	microsoft	windows_2003_server	enterprise	Yes
Operating System	microsoft	windows_2003_server	enterprise_64-bit	Yes
Operating System	microsoft	windows_2003_server	r2	Yes
Operating System	microsoft	windows_2003_server	r2	Yes
Operating System	microsoft	windows_2003_server	standard	Yes
Operating System	microsoft	windows_2003_server	web	Yes
Operating System	microsoft	windows_98	*	Yes
Operating System	microsoft	windows_98se	*	Yes
Operating System	microsoft	windows_me	*	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_nt	4.0	Yes
Operating System	microsoft	windows_xp	*	Yes
Operating System	microsoft	windows_xp	*	Yes
Operating System	microsoft	windows_xp	*	Yes
Operating System	microsoft	windows_xp	*	Yes
Operating System	microsoft	windows_xp	*	Yes

References

http://lists.grok.org.uk/pipermail/full-disclosure/2004-July/023919.html ([email protected])
http://www.kb.cert.org/vuls/id/920060 Patch, Third Party Advisory, US Government Resource ([email protected])
http://www.us-cert.gov/cas/techalerts/TA04-196A.html Patch, Third Party Advisory, US Government Resource ([email protected])
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-023 ([email protected])
https://exchange.xforce.ibmcloud.com/vulnerabilities/16586 ([email protected])
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1503 ([email protected])
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1530 ([email protected])
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2155 ([email protected])
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3179 ([email protected])
http://lists.grok.org.uk/pipermail/full-disclosure/2004-July/023919.html (af854a3a-2127-422b-91ae-364da2661108)
http://www.kb.cert.org/vuls/id/920060 Patch, Third Party Advisory, US Government Resource (af854a3a-2127-422b-91ae-364da2661108)
http://www.us-cert.gov/cas/techalerts/TA04-196A.html Patch, Third Party Advisory, US Government Resource (af854a3a-2127-422b-91ae-364da2661108)
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-023 (af854a3a-2127-422b-91ae-364da2661108)
https://exchange.xforce.ibmcloud.com/vulnerabilities/16586 (af854a3a-2127-422b-91ae-364da2661108)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1503 (af854a3a-2127-422b-91ae-364da2661108)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1530 (af854a3a-2127-422b-91ae-364da2661108)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2155 (af854a3a-2127-422b-91ae-364da2661108)
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3179 (af854a3a-2127-422b-91ae-364da2661108)