cbcvebase.
CVE-2003-0469
published 2003-08-07

CVE-2003-0469: Buffer overflow in the HTML Converter (HTML32.cnv) on various Windows operating systems allows remote attackers to cause a denial of service (crash) and…

PriorityP336high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
49.53%
98.7th percentile
Buffer overflow in the HTML Converter (HTML32.cnv) on various Windows operating systems allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via cut-and-paste operation, as demonstrated in Internet Explorer 5.0 using a long "align" argument in an HR tag.

Affected

3 ranges
VendorProductVersion rangeFixed in
microsoftwindows_2003_server
microsoftwindows_2003_server
microsoftwindows_nt

Detection & IOCsextracted from sources · hover to see the quote

filenameHTML32.cnv
commandWndDoc.execCommand("SelectAll")
  • Detect excessively long 'align' attribute values on HR tags in HTML content processed by HTML32.cnv, which triggers the buffer overflow
  • Monitor for exploit delivery via cut-and-paste operations (execCommand Copy/SelectAll) in browser contexts such as Internet Explorer, which can trigger HTML32.cnv processing of malicious HR align payloads
  • Look for off-screen window creation (moveTo screen.Width, screen.Height) combined with document.execCommand Copy sequences as a delivery mechanism for this exploit
  • ·The overflow is triggered specifically through the cut-and-paste code path in HTML32.cnv, not direct rendering; detection must account for this indirect trigger mechanism
  • ·Affected platforms include Windows XP, 2000, and NT 4.0; scope of vulnerable systems should be validated against these versions
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.