CVE-2003-0469
Last modified
CVE-2003-0469 is a vulnerability of currently unknown severity. Buffer overflow in the HTML Converter (HTML32.cnv) on various Windows operating systems allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via cut-and-paste operation, as demonstrated in Internet Explorer 5.0 using a long "align" argument in an HR tag.. EPSS estimates a 49.53% chance of exploitation in the next 30 days.
Description
Buffer overflow in the HTML Converter (HTML32.cnv) on various Windows operating systems allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via cut-and-paste operation, as demonstrated in Internet Explorer 5.0 using a long "align" argument in an HR tag.
Metrics
Affected Software
| Vendor | Product | Versions | Update |
|---|---|---|---|
| Microsoft | Windows 2000 | All versions | — |
| Microsoft | Windows 2003 Server | 64-bit | — |
| Microsoft | Windows 2003 Server | r2 | — |
| Microsoft | Windows 98 | All versions | Gold |
| Microsoft | Windows 98se | All versions | — |
| Microsoft | Windows Me | All versions | — |
| Microsoft | Windows Nt | 4.0 | — |
| Microsoft | Windows Xp | All versions | — |
References
- http://www.cert.org/advisories/CA-2003-14.htmlUS Government Resource
- http://www.kb.cert.org/vuls/id/823260US Government Resource
- http://www.cert.org/advisories/CA-2003-14.htmlUS Government Resource
- http://www.kb.cert.org/vuls/id/823260US Government Resource
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2003-0469?
How severe is CVE-2003-0469?
How do I fix CVE-2003-0469?
Are you affected by CVE-2003-0469?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST