What is the severity of CVE-2004-0200?

CVE-2004-0200 is considered critical due to its potential for remote code execution.

How do I fix CVE-2004-0200?

To fix CVE-2004-0200, you should apply the latest security updates provided by Microsoft for the affected products.

Which software is affected by CVE-2004-0200?

CVE-2004-0200 affects multiple Microsoft products including Visual Studio.NET, Microsoft Word, and Microsoft Office FrontPage.

Can CVE-2004-0200 be exploited by an attacker?

Yes, CVE-2004-0200 can be exploited by attackers through crafted JPEG images.

What impact does CVE-2004-0200 have on user systems?

CVE-2004-0200 can allow attackers to execute arbitrary code, potentially compromising the affected system.

Vulnerability/
CVE-2004-0200

critical

9.3

CWE

119 NVD-CWE-Other

17/9/2004

8/8/2024

CVE-2004-0200: Buffer Overflow

First published: Fri Sep 17 2004(Updated: )

Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to a large integer length before a memory copy operation.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
Microsoft Office FrontPage	=2003
Microsoft Visual J# .NET	=2003
Microsoft Visual C++	=2003
Microsoft Digital Image Pro	=9
Microsoft Visual Studio .NET	=2003-gold
Microsoft Project Professional	=2002-sp1
Microsoft Visual Basic	=2003
Microsoft Visual C++	=2002
Microsoft Project Professional	=2003
Microsoft Picture It!	=7.0
Microsoft PowerPoint	=2002
Microsoft Office	=xp-sp3
Microsoft Outlook	=2003
Microsoft Digital Image Suite	=9
Microsoft PowerPoint	=2003
Microsoft InfoPath	=2003
Microsoft Publisher	=2002
Microsoft Visual Basic	=2002
Microsoft Office FrontPage	=2002
Microsoft Word for Android	=2003
Microsoft Excel for Mac	=2002
Microsoft Picture It!	=2002
Microsoft Visio Professional	=2002-sp2
Microsoft Picture It!	=9
Microsoft greetings	=2002
Microsoft Publisher	=2003
Microsoft OneNote for Mac	=2003
Microsoft Visual C#	=2003
Microsoft Word for Android	=2002
Microsoft Visual C#	=2002
Microsoft Visio Professional	=2003
Microsoft Excel for Mac	=2003
Microsoft Office	=2003
Microsoft Producer	=gold
Microsoft Outlook	=2002
Microsoft .NET Framework	=1.0-sp2
Microsoft Visual Studio .NET	=2002-gold
Microsoft Digital Image Pro	=7.0
Microsoft Windows XP
Microsoft Windows XP	=sp1
Microsoft Windows 2003 Server	=r2
Microsoft Windows XP	=sp1
Microsoft Windows XP	=gold

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2004-0200?
CVE-2004-0200 is considered critical due to its potential for remote code execution.
How do I fix CVE-2004-0200?
To fix CVE-2004-0200, you should apply the latest security updates provided by Microsoft for the affected products.
Which software is affected by CVE-2004-0200?
CVE-2004-0200 affects multiple Microsoft products including Visual Studio.NET, Microsoft Word, and Microsoft Office FrontPage.
Can CVE-2004-0200 be exploited by an attacker?
Yes, CVE-2004-0200 can be exploited by attackers through crafted JPEG images.
What impact does CVE-2004-0200 have on user systems?
CVE-2004-0200 can allow attackers to execute arbitrary code, potentially compromising the affected system.

agent/references
agent/type
agent/weakness
agent/author
agent/severity
agent/description
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/event
agent/first-publish-date
agent/source
agent/tags
agent/softwarecombine
collector/nvd-historical
agent/software-canonical-lookup-request
collector/nvd-index
vendor/microsoft
canonical/microsoft office frontpage
version/microsoft office frontpage/2003
canonical/microsoft visual j# .net
version/microsoft visual j# .net/2003
canonical/microsoft visual c++
version/microsoft visual c++/2003
canonical/microsoft digital image pro
version/microsoft digital image pro/9
canonical/microsoft visual studio .net
version/microsoft visual studio .net/2003-gold
canonical/microsoft project professional
version/microsoft project professional/2002-sp1
canonical/microsoft visual basic
version/microsoft visual basic/2003
version/microsoft visual c++/2002
version/microsoft project professional/2003
canonical/microsoft picture it!
version/microsoft picture it!/7.0
canonical/microsoft powerpoint
version/microsoft powerpoint/2002
canonical/microsoft office
version/microsoft office/xp-sp3
canonical/microsoft outlook
version/microsoft outlook/2003
canonical/microsoft digital image suite
version/microsoft digital image suite/9
version/microsoft powerpoint/2003
canonical/microsoft infopath
version/microsoft infopath/2003
canonical/microsoft publisher
version/microsoft publisher/2002
version/microsoft visual basic/2002
version/microsoft office frontpage/2002
canonical/microsoft word for android
version/microsoft word for android/2003
canonical/microsoft excel for mac
version/microsoft excel for mac/2002
version/microsoft picture it!/2002
canonical/microsoft visio professional
version/microsoft visio professional/2002-sp2
version/microsoft picture it!/9
canonical/microsoft greetings
version/microsoft greetings/2002
version/microsoft publisher/2003
canonical/microsoft onenote for mac
version/microsoft onenote for mac/2003
canonical/microsoft visual c#
version/microsoft visual c#/2003
version/microsoft word for android/2002
version/microsoft visual c#/2002
version/microsoft visio professional/2003
version/microsoft excel for mac/2003
version/microsoft office/2003
canonical/microsoft producer
version/microsoft producer/gold
version/microsoft outlook/2002
canonical/microsoft .net framework
version/microsoft .net framework/1.0-sp2
version/microsoft visual studio .net/2002-gold
version/microsoft digital image pro/7.0
canonical/microsoft windows xp
version/microsoft windows xp/sp1
canonical/microsoft windows 2003 server
version/microsoft windows 2003 server/r2
version/microsoft windows xp/gold

CVE-2004-0200: Buffer Overflow

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2004-0200?

How do I fix CVE-2004-0200?

Which software is affected by CVE-2004-0200?

Can CVE-2004-0200 be exploited by an attacker?

What impact does CVE-2004-0200 have on user systems?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2004-0200?

How do I fix CVE-2004-0200?

Which software is affected by CVE-2004-0200?

Can CVE-2004-0200 be exploited by an attacker?

What impact does CVE-2004-0200 have on user systems?