Vulnerabilities > CVE-2004-0571 - Unspecified vulnerability in Microsoft products
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Microsoft Word for Windows 6.0 Converter does not properly validate certain data lengths, which allows remote attackers to execute arbitrary code via a .wri, .rtf, and .doc file sent by email or malicious web site, aka "Table Conversion Vulnerability," a different vulnerability than CVE-2004-0901.
Vulnerable Configurations
Nessus
NASL family | Windows : Microsoft Bulletins |
NASL id | SMB_NT_MS04-041.NASL |
description | The remote host contains a version of Microsoft WordPad that is vulnerable to two security flaws. To exploit these flaws an attacker would need to send a malformed Word file to a victim on the remote host and wait for him to open the file using WordPad. Opening the file with WordPad will trigger a buffer overflow that could allow an attacker to execute arbitrary code on the remote host with the privileges of the user. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 15966 |
published | 2004-12-14 |
reporter | This script is Copyright (C) 2004-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/15966 |
title | MS04-041: Vulnerabilities in WordPad (885836) |
code |
|
Oval
accepted 2005-04-27T12:07:00.000-04:00 class vulnerability contributors name Christine Walzer organization The MITRE Corporation name Ingrid Skoog organization The MITRE Corporation name Robert L. Hollis organization ThreatGuard, Inc. name Clifford Farrugia organization GFI Software
description Microsoft Word for Windows 6.0 Converter does not properly validate certain data lengths, which allows remote attackers to execute arbitrary code via a .wri, .rtf, and .doc file sent by email or malicious web site, aka "Table Conversion Vulnerability," a different vulnerability than CVE-2004-0901. family windows id oval:org.mitre.oval:def:1168 status deprecated submitted 2005-01-05T12:00:00.000-04:00 title Suppressed: Duplicate of OVAL3743 version 7 accepted 2014-06-30T04:04:50.380-04:00 class vulnerability contributors name Christine Walzer organization The MITRE Corporation name Robert L. Hollis organization ThreatGuard, Inc. name Jonathan Baker organization The MITRE Corporation name Josh Turpin organization Symantec Corporation name Maria Mikhno organization ALTX-SOFT
definition_extensions comment Microsoft Windows NT is installed oval oval:org.mitre.oval:def:36 description Microsoft Word for Windows 6.0 Converter does not properly validate certain data lengths, which allows remote attackers to execute arbitrary code via a .wri, .rtf, and .doc file sent by email or malicious web site, aka "Table Conversion Vulnerability," a different vulnerability than CVE-2004-0901. family windows id oval:org.mitre.oval:def:1417 status accepted submitted 2005-01-05T12:00:00.000-04:00 title MS Word 6.0 Table Conversion Vulnerability (NT 4.0 Terminal Server) version 29 accepted 2014-06-30T04:09:01.186-04:00 class vulnerability contributors name Christine Walzer organization The MITRE Corporation name Christine Walzer organization The MITRE Corporation name Ingrid Skoog organization The MITRE Corporation name Robert L. Hollis organization ThreatGuard, Inc. name Josh Turpin organization Symantec Corporation name Maria Mikhno organization ALTX-SOFT
description Microsoft Word for Windows 6.0 Converter does not properly validate certain data lengths, which allows remote attackers to execute arbitrary code via a .wri, .rtf, and .doc file sent by email or malicious web site, aka "Table Conversion Vulnerability," a different vulnerability than CVE-2004-0901. family windows id oval:org.mitre.oval:def:1959 status accepted submitted 2005-01-05T12:00:00.000-04:00 title MS Word 6.0 Table Conversion Vulnerability (32-bit XP) version 18 accepted 2014-06-30T04:09:01.637-04:00 class vulnerability contributors name Christine Walzer organization The MITRE Corporation name Robert L. Hollis organization ThreatGuard, Inc. name Josh Turpin organization Symantec Corporation name Maria Mikhno organization ALTX-SOFT
description Microsoft Word for Windows 6.0 Converter does not properly validate certain data lengths, which allows remote attackers to execute arbitrary code via a .wri, .rtf, and .doc file sent by email or malicious web site, aka "Table Conversion Vulnerability," a different vulnerability than CVE-2004-0901. family windows id oval:org.mitre.oval:def:1976 status accepted submitted 2005-01-05T12:00:00.000-04:00 title MS Word 6.0 Table Conversion Vulnerability (64-bit XP) version 18 accepted 2014-06-30T04:11:00.121-04:00 class vulnerability contributors name Christine Walzer organization The MITRE Corporation name Andrew Buttner organization The MITRE Corporation name Robert L. Hollis organization ThreatGuard, Inc. name Josh Turpin organization Symantec Corporation name Maria Mikhno organization ALTX-SOFT
description Microsoft Word for Windows 6.0 Converter does not properly validate certain data lengths, which allows remote attackers to execute arbitrary code via a .wri, .rtf, and .doc file sent by email or malicious web site, aka "Table Conversion Vulnerability," a different vulnerability than CVE-2004-0901. family windows id oval:org.mitre.oval:def:3416 status accepted submitted 2005-01-05T12:00:00.000-04:00 title MS Word 6.0 Table Conversion Vulnerability (Windows 2000) version 13 accepted 2014-06-30T04:11:00.241-04:00 class vulnerability contributors name Christine Walzer organization The MITRE Corporation name Robert L. Hollis organization ThreatGuard, Inc. name Josh Turpin organization Symantec Corporation name Maria Mikhno organization ALTX-SOFT
description Microsoft Word for Windows 6.0 Converter does not properly validate certain data lengths, which allows remote attackers to execute arbitrary code via a .wri, .rtf, and .doc file sent by email or malicious web site, aka "Table Conversion Vulnerability," a different vulnerability than CVE-2004-0901. family windows id oval:org.mitre.oval:def:3743 status accepted submitted 2005-01-05T12:00:00.000-04:00 title MS Word 6.0 Table Conversion Vulnerability (Server 2003) version 12 accepted 2014-06-30T04:11:00.435-04:00 class vulnerability contributors name Christine Walzer organization The MITRE Corporation name Robert L. Hollis organization ThreatGuard, Inc. name John Hoyland organization Centennial Software name Jonathan Baker organization The MITRE Corporation name Josh Turpin organization Symantec Corporation name Maria Mikhno organization ALTX-SOFT
definition_extensions comment Microsoft Windows NT is installed oval oval:org.mitre.oval:def:36 description Microsoft Word for Windows 6.0 Converter does not properly validate certain data lengths, which allows remote attackers to execute arbitrary code via a .wri, .rtf, and .doc file sent by email or malicious web site, aka "Table Conversion Vulnerability," a different vulnerability than CVE-2004-0901. family windows id oval:org.mitre.oval:def:4328 status accepted submitted 2005-01-05T12:00:00.000-04:00 title MS Word 6.0 Table Conversion Vulnerability (NT 4.0) version 30 accepted 2005-04-27T12:07:00.000-04:00 class vulnerability contributors name Christine Walzer organization The MITRE Corporation name Jonathan Baker organization The MITRE Corporation name Ingrid Skoog organization The MITRE Corporation name Robert L. Hollis organization ThreatGuard, Inc. name Clifford Farrugia organization GFI Software name Dragos Prisaca organization Gideon Technologies, Inc. name Sudhir Gandhe organization Telos name Shane Shaffer organization G2, Inc.
description Microsoft Word for Windows 6.0 Converter does not properly validate certain data lengths, which allows remote attackers to execute arbitrary code via a .wri, .rtf, and .doc file sent by email or malicious web site, aka "Table Conversion Vulnerability," a different vulnerability than CVE-2004-0901. family windows id oval:org.mitre.oval:def:685 status deprecated submitted 2005-01-05T12:00:00.000-04:00 title Suppressed: Duplicate of OVAL1959 version 13
References
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-041
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18337
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1168
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1417
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1959
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1976
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3416
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3743
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4328
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A685