Vulnerability Details CVE-2004-0205
Buffer overflow in Microsoft Internet Information Server (IIS) 4.0 allows local users to execute arbitrary code via the redirect function.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.0%
CVSS Severity
CVSS v2 Score 7.2
References
- http://secunia.com/advisories/12061
- http://www.ciac.org/ciac/bulletins/o-179.shtml
- http://www.kb.cert.org/vuls/id/717748
- http://www.osvdb.org/7799
- http://www.securityfocus.com/bid/10706
- http://www.us-cert.gov/cas/techalerts/TA04-196A.html
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-021
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16578
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2204
- http://secunia.com/advisories/12061
- http://www.ciac.org/ciac/bulletins/o-179.shtml
- http://www.kb.cert.org/vuls/id/717748
- http://www.osvdb.org/7799
- http://www.securityfocus.com/bid/10706
- http://www.us-cert.gov/cas/techalerts/TA04-196A.html
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-021
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16578
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2204
Products affected by CVE-2004-0205
-
cpe:2.3:a:avaya:ip600_media_servers:-
-
cpe:2.3:a:avaya:ip600_media_servers:r10
-
cpe:2.3:a:microsoft:internet_information_server:4.0
-
cpe:2.3:h:avaya:definity_one_media_server:-
-
cpe:2.3:h:avaya:definity_one_media_server:r10
-
cpe:2.3:h:avaya:definity_one_media_server:r9
-
cpe:2.3:h:avaya:s8100:-
-
cpe:2.3:o:avaya:modular_messaging_message_storage_server:s3400