NVD

Id
70999  
Name
CVE-2004-0572  
Description
Buffer overflow in the Windows Program Group Converter (grpconv.exe) may allow remote attackers to execute arbitrary code via a shell: URL with a long filename and a .grp extension, which is not properly handled when the shell capability launches grpconv.exe.  
Reject
 
CVSS Version
2  
CVSS Score
10  
Severity
High  
CVSS Base Score
10  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:C/I:C/A:C)  
Pub Date
2017-07-18  
Published
2004-11-03  
Modified Date
2017-07-10  
Seq
2004-0572  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
366483 70999 CVE-2004-0572 20040707 Re: shell:windows command question  View
366484 70999 CVE-2004-0572 oval:org.mitre.oval:def:1279  View
366485 70999 CVE-2004-0572 oval:org.mitre.oval:def:1837  View
366486 70999 CVE-2004-0572 oval:org.mitre.oval:def:1843  View
366487 70999 CVE-2004-0572 oval:org.mitre.oval:def:2753  View
366488 70999 CVE-2004-0572 oval:org.mitre.oval:def:3071  View
366489 70999 CVE-2004-0572 oval:org.mitre.oval:def:3768  View
366490 70999 CVE-2004-0572 oval:org.mitre.oval:def:3822  View
366491 70999 CVE-2004-0572 oval:org.mitre.oval:def:4244  View
366492 70999 CVE-2004-0572 oval:org.mitre.oval:def:4493  View
366493 70999 CVE-2004-0572 VU#543864  View
366494 70999 CVE-2004-0572 MS04-037  View
366495 70999 CVE-2004-0572 10677  View
366496 70999 CVE-2004-0572 win-grpconv-bo(16664)  View
366497 70999 CVE-2004-0572 win-ms04037-patch(17662)  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
62925 JVNDB-2004-000267 Microsoft Windows の Program Group Converte におけるバッファオーバーフローの脆弱性 Microsoft Windows に含まれている Program Group Converter (grpconv.exe) には、取り扱うグループファイル名の長さを適切にチェックしないため、バッファオーバーフローを発生する脆弱性が存在します。 CVE-2004-0572 8999 CVE-2004-0572 70999 10 http://jvndb.jvn.jp/ja/contents/2004/JVNDB-2004-000267.html 2004-07-07 2007-04-01 View