Vulnerability Description
Unknown vulnerability in the Graphics Rendering Engine processes of Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via (1) Windows Metafile (WMF) or (2) Enhanced Metafile (EMF) image formats that involve "an unchecked buffer."
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Windows 2000 | All versions |
| Microsoft | Windows 2003 Server | r2 |
| Microsoft | Windows Xp | All versions |
References
- http://marc.info/?l=bugtraq&m=109829067325779&w=2
- http://www.kb.cert.org/vuls/id/806278US Government Resource
- http://www.securityfocus.com/bid/11375
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-03
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16581
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17658
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://marc.info/?l=bugtraq&m=109829067325779&w=2
- http://www.kb.cert.org/vuls/id/806278US Government Resource
- http://www.securityfocus.com/bid/11375
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-03
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16581
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17658
FAQ
What is CVE-2004-0209?
CVE-2004-0209 is a vulnerability with a CVSS score of 10.0 (HIGH). Unknown vulnerability in the Graphics Rendering Engine processes of Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via (1) Windows Metafi...
How severe is CVE-2004-0209?
CVE-2004-0209 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-0209?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Windows 2000, Microsoft Windows 2003 Server, Microsoft Windows Xp.