CVE-2004-0209
First published: Sat Oct 16 2004(Updated: )
Unknown vulnerability in the Graphics Rendering Engine processes of Microsoft Windows 2000, Windows XP, and Windows Server 2003 allows remote attackers to execute arbitrary code via (1) Windows Metafile (WMF) or (2) Enhanced Metafile (EMF) image formats that involve "an unchecked buffer."
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Windows 2000 | ||
| Microsoft Windows Server 2003 | =r2 | |
| Microsoft Windows XP | =gold |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.kb.cert.org/vuls/id/806278
- http://www.securityfocus.com/bid/11375
- http://marc.info/?l=bugtraq&m=109829067325779&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17658
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16581
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2428
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2114
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1872
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-032
Frequently Asked Questions
What is the severity of CVE-2004-0209?
CVE-2004-0209 has a high severity rating due to its ability to allow remote code execution.
How do I fix CVE-2004-0209?
To fix CVE-2004-0209, install the latest security patches provided by Microsoft for affected Windows versions.
Which Windows versions are affected by CVE-2004-0209?
CVE-2004-0209 affects Windows 2000, Windows XP Gold, and Windows Server 2003 R2.
What attack vectors are associated with CVE-2004-0209?
CVE-2004-0209 can be exploited via malicious Windows Metafile (WMF) or Enhanced Metafile (EMF) image files.
Is CVE-2004-0209 still a concern today?
While CVE-2004-0209 targets older operating systems, any remaining installations of affected versions may still be at risk.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/weakness
- agent/author
- agent/references
- agent/last-modified-date
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/microsoft
- canonical/microsoft windows 2000
- canonical/microsoft windows server 2003
- version/microsoft windows server 2003/r2
- canonical/microsoft windows xp
- version/microsoft windows xp/gold