What is CVE-2004-0897?

CVE-2004-0897 is a vulnerability in N/a. Published 2005-01-19.

Is CVE-2004-0897 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2004-0897

The Indexing Service for Microsoft Windows XP and Server 2003 does not properly validate the length of a message, which allows remote attackers to execute arbitrary code via a buffer overflow attack.

EPSS: 0.505 (97.9th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

ARPSyndicate/cve-scores

References

13802 (x_refsource_SECUNIA, third-party-advisory)
P-095 (government-resource, third-party-advisory, x_refsource_CIAC)
12228 (vdb-entry, x_refsource_BID)
VU#657118 (x_refsource_CERT-VN, third-party-advisory)
MS05-003 (x_refsource_MS, vendor-advisory)
oval:org.mitre.oval:def:2447 (signature, x_refsource_OVAL, vdb-entry)
1012833 (vdb-entry, x_refsource_SECTRACK)
oval:org.mitre.oval:def:2128 (signature, x_refsource_OVAL, vdb-entry)

Frequently asked questions

What is CVE-2004-0897?: CVE-2004-0897 is a vulnerability in N/a. Published 2005-01-19.
Is CVE-2004-0897 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.