CVE
- Id
- 9477
- CVE No.
- CVE-2004-1049
- Status
- Candidate
- Description
- Integer overflow in the LoadImage API of the USER32 Lib for Microsoft Windows allows remote attackers to execute arbitrary code via a .bmp, .cur, .ico or .ani file with a large image size field, which leads to a buffer overflow, aka the "Cursor and Icon Format Handling Vulnerability."
- Phase
- Assigned (20041117)
- Votes
- None (candidate not yet proposed)
- Comments
Related CVE References
| Id | CVE Id | CVE No. | Reference | Actions |
|---|---|---|---|---|
| 63667 | 9477 | CVE-2004-1049 | BUGTRAQ:20041223 Microsoft Windows LoadImage API Integer Buffer overflow | View |
| 63668 | 9477 | CVE-2004-1049 | URL:http://marc.info/?l=bugtraq&m=110382891718076&w=2 | View |
| 63669 | 9477 | CVE-2004-1049 | MISC:http://www.xfocus.net/flashsky/icoExp/index.html | View |
| 63670 | 9477 | CVE-2004-1049 | MS:MS05-002 | View |
| 63671 | 9477 | CVE-2004-1049 | URL:http://www.microsoft.com/technet/Security/bulletin/ms05-002.mspx | View |
| 63672 | 9477 | CVE-2004-1049 | CERT:TA05-012A | View |
| 63673 | 9477 | CVE-2004-1049 | URL:http://www.us-cert.gov/cas/techalerts/TA05-012A.html | View |
| 63674 | 9477 | CVE-2004-1049 | CERT-VN:VU#625856 | View |
| 63675 | 9477 | CVE-2004-1049 | URL:http://www.kb.cert.org/vuls/id/625856 | View |
| 63676 | 9477 | CVE-2004-1049 | CIAC:P-094 | View |
| 63677 | 9477 | CVE-2004-1049 | URL:http://www.ciac.org/ciac/bulletins/p-094.shtml | View |
| 63678 | 9477 | CVE-2004-1049 | BID:12095 | View |
| 63679 | 9477 | CVE-2004-1049 | URL:http://www.securityfocus.com/bid/12095 | View |
| 63680 | 9477 | CVE-2004-1049 | OSVDB:12623 | View |
| 63681 | 9477 | CVE-2004-1049 | URL:http://www.osvdb.org/12623 | View |
| 63682 | 9477 | CVE-2004-1049 | OVAL:oval:org.mitre.oval:def:2956 | View |
| 63683 | 9477 | CVE-2004-1049 | URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:2956 | View |
| 63684 | 9477 | CVE-2004-1049 | OVAL:oval:org.mitre.oval:def:3097 | View |
| 63685 | 9477 | CVE-2004-1049 | URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:3097 | View |
| 63686 | 9477 | CVE-2004-1049 | OVAL:oval:org.mitre.oval:def:3220 | View |
| 63687 | 9477 | CVE-2004-1049 | URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:3220 | View |
| 63688 | 9477 | CVE-2004-1049 | OVAL:oval:org.mitre.oval:def:3355 | View |
| 63689 | 9477 | CVE-2004-1049 | URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:3355 | View |
| 63690 | 9477 | CVE-2004-1049 | OVAL:oval:org.mitre.oval:def:4671 | View |
| 63691 | 9477 | CVE-2004-1049 | URL:http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:4671 | View |
| 63692 | 9477 | CVE-2004-1049 | SECTRACK:1012684 | View |
| 63693 | 9477 | CVE-2004-1049 | URL:http://securitytracker.com/id?1012684 | View |
| 63694 | 9477 | CVE-2004-1049 | SECUNIA:13645 | View |
| 63695 | 9477 | CVE-2004-1049 | URL:http://secunia.com/advisories/13645 | View |
| 63696 | 9477 | CVE-2004-1049 | XF:win-loadimage-bo(18668) | View |
Related JVN
| Id | JVN No. | Title | Summary | CVE No. | CVE Id | CVSS_v2 | CVSS_v3 | JVN URL | Actions |
|---|---|---|---|---|---|---|---|---|---|
| 63127 | JVNDB-2004-000469 | Microsoft Internet Explorer の IFRAME および FRAMEタグにおけるバッファオーバーフローの脆弱性 | Microsoft Internet Explorer には、IFRAME および FRAME タグの SRC や NAME 属性に対する境界チェックに不備が存在するため、バッファオーバーフローが発生する脆弱性が存在します。 | CVE-2004-1050 | 9477 | 10 | http://jvndb.jvn.jp/ja/contents/2004/JVNDB-2004-000469.html | View |
