CVE-2004-0568

3 documents3 sources

Severity

10.0CRITICAL

EPSS

26.9%

top 3.64%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Windows 2003 Server Microsoft Windows NT

Timeline

PublishedJan 10

Latest updateApr 29

Description

HyperTerminal application for Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 does not properly validate the length of a value that is saved in a session file, which allows remote attackers to execute arbitrary code via a malicious HyperTerminal session file (.ht), web site, or Telnet URL contained in an e-mail message, triggering a buffer overflow.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

▶NVDmicrosoft/windows_2003_server6 versions+5

▶NVDmicrosoft/windows_nt4.0

🔴Vulnerability Details

GHSA

GHSA-33pc-wm38-7ffg: HyperTerminal application for Windows NT 4↗2022-04-29

▶

CVEList

CVE-2004-0568: HyperTerminal application for Windows NT 4↗2004-12-15

▶