CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-0200

Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to a large integer length before a memory copy operation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.755

EPSS Ranking 98.8%

CVSS Severity

CVSS v2 Score 9.3

References

Products affected by CVE-2004-0200

Microsoft » .net Framework » Version: 1.0

cpe:2.3:a:microsoft:.net_framework:1.0
Microsoft » Digital Image Pro » Version: 7.0

cpe:2.3:a:microsoft:digital_image_pro:7.0
Microsoft » Digital Image Pro » Version: 9

cpe:2.3:a:microsoft:digital_image_pro:9
Microsoft » Digital Image Suite » Version: 9

cpe:2.3:a:microsoft:digital_image_suite:9
Microsoft » Excel » Version: 2002

cpe:2.3:a:microsoft:excel:2002
Microsoft » Excel » Version: 2003

cpe:2.3:a:microsoft:excel:2003
Microsoft » Frontpage » Version: 2002

cpe:2.3:a:microsoft:frontpage:2002
Microsoft » Frontpage » Version: 2003

cpe:2.3:a:microsoft:frontpage:2003
Microsoft » Greetings » Version: 2002

cpe:2.3:a:microsoft:greetings:2002
Microsoft » Infopath » Version: 2003

cpe:2.3:a:microsoft:infopath:2003
Microsoft » Office » Version: 2003

cpe:2.3:a:microsoft:office:2003
Microsoft » Office » Version: xp

cpe:2.3:a:microsoft:office:xp
Microsoft » Onenote » Version: 2003

cpe:2.3:a:microsoft:onenote:2003
Microsoft » Outlook » Version: 2002

cpe:2.3:a:microsoft:outlook:2002
Microsoft » Outlook » Version: 2003

cpe:2.3:a:microsoft:outlook:2003
Microsoft » Picture It » Version: 2002

cpe:2.3:a:microsoft:picture_it:2002
Microsoft » Picture It » Version: 7.0

cpe:2.3:a:microsoft:picture_it:7.0
Microsoft » Picture It » Version: 9

cpe:2.3:a:microsoft:picture_it:9
Microsoft » Powerpoint » Version: 2002

cpe:2.3:a:microsoft:powerpoint:2002
Microsoft » Powerpoint » Version: 2003

cpe:2.3:a:microsoft:powerpoint:2003
Microsoft » Producer » Version: Any

cpe:2.3:a:microsoft:producer:*
Microsoft » Project » Version: 2002

cpe:2.3:a:microsoft:project:2002
Microsoft » Project » Version: 2003

cpe:2.3:a:microsoft:project:2003
Microsoft » Publisher » Version: 2002

cpe:2.3:a:microsoft:publisher:2002
Microsoft » Publisher » Version: 2003

cpe:2.3:a:microsoft:publisher:2003
Microsoft » Visio » Version: 2002

cpe:2.3:a:microsoft:visio:2002
Microsoft » Visio » Version: 2003

cpe:2.3:a:microsoft:visio:2003
Microsoft » Visual Basic » Version: 2002

cpe:2.3:a:microsoft:visual_basic:2002
Microsoft » Visual Basic » Version: 2003

cpe:2.3:a:microsoft:visual_basic:2003
Microsoft » Visual C# » Version: 2002

cpe:2.3:a:microsoft:visual_c#:2002
Microsoft » Visual C# » Version: 2003

cpe:2.3:a:microsoft:visual_c#:2003
Microsoft » Visual C++ » Version: 2002

cpe:2.3:a:microsoft:visual_c++:2002
Microsoft » Visual C++ » Version: 2003

cpe:2.3:a:microsoft:visual_c++:2003
Microsoft » Visual J# .net » Version: 2003

cpe:2.3:a:microsoft:visual_j#_.net:2003
Microsoft » Visual Studio .net » Version: 2002

cpe:2.3:a:microsoft:visual_studio_.net:2002
Microsoft » Visual Studio .net » Version: 2003

cpe:2.3:a:microsoft:visual_studio_.net:2003
Microsoft » Word » Version: 2002

cpe:2.3:a:microsoft:word:2002
Microsoft » Word » Version: 2003

cpe:2.3:a:microsoft:word:2003
Microsoft » Windows 2003 Server » Version: r2

cpe:2.3:o:microsoft:windows_2003_server:r2
Microsoft » Windows Xp » Version: Any

cpe:2.3:o:microsoft:windows_xp:*
Microsoft » Windows Xp » Version: N/A

cpe:2.3:o:microsoft:windows_xp:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2004-0200

Products

Pricing

Contact Us