What is CVE-2004-1134?

CVE-2004-1134 is a vulnerability in N/a. Published 2004-12-08.

Is CVE-2004-1134 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2004-1134

Buffer overflow in the Microsoft W3Who ISAPI (w3who.dll) allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long query string.

EPSS: 0.864 (99.4th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

20041206 Multiple vulnerabilities in w3who ISAPI DLL (mailing-list, x_refsource_FULLDISC)
www.exaprobe.com/labs/advisories/esa-2004-1206.html (x_refsource_MISC)
w3who-bo(18377) (vdb-entry, x_refsource_XF)

Frequently asked questions

What is CVE-2004-1134?: CVE-2004-1134 is a vulnerability in N/a. Published 2004-12-08.
Is CVE-2004-1134 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.