CVE-2004-0901: CVE-2004-0901

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2004-0901

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Microsoft Word for Windows 6.0 Converter (MSWRD632.WPC), as used in WordPad, does not properly validate certain data lengths, which allows remote attackers to execute arbitrary code via a .wri, .rtf, and .doc file sent by email or malicious web site, aka "Font Conversion Vulnerability," a different vulnerability than CVE-2004-0571.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Microsft WordPad MSWRD632.WPC 代码执行漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

WordPad是使用MFC rich编辑控制类的文字处理应用程序，默认安装在所有Windows系统中，包含从其他文件类型转换为RTF的过滤器。 WordPad中所使用的MSWRD632.WPC转换器没有正确校验数据长度，导致其存在代码执行漏洞。攻击者可利用此漏洞，通过构建的恶意文档(.wri、 .rtf及.doc文件)执行任意代码。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2004-0901

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2004-0901

Please Login to view more intelligence information

http://www.ciac.org/ciac/bulletins/p-055.shtmlthird-party-advisorygovernment-resourcex_refsource_CIAC
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-041vendor-advisoryx_refsource_MS
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A539vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4076vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4749vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1655vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3882vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1241vdb-entrysignaturex_refsource_OVAL
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3310vdb-entrysignaturex_refsource_OVAL
https://exchange.xforce.ibmcloud.com/vulnerabilities/18338vdb-entryx_refsource_XF
http://www.idefense.com/application/poi/display?id=162&type=vulnerabilities&flashstatus=truethird-party-advisoryx_refsource_IDEFENSE
https://nvd.nist.gov/vuln/detail/CVE-2004-0901

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2004-0901

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2004-0901

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2004-0901

III. Intelligence Information for CVE-2004-0901

IV. Related Vulnerabilities

V. Comments for CVE-2004-0901

Leave a comment