CVE-2004-0848
published 2005-02-08CVE-2004-0848: Buffer overflow in Microsoft Office XP allows remote attackers to execute arbitrary code via a link with a URL file location containing long inputs after (1)…
high7.5CVSS 3.1
AVNACLAuNCPIPAP
Buffer overflow in Microsoft Office XP allows remote attackers to execute arbitrary code via a link with a URL file location containing long inputs after (1) "%00 (null byte) in .doc filenames or (2) "%0a" (carriage return) in .rtf filenames.
Affected
8 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | office | — | — |
| microsoft | powerpoint | — | — |
| microsoft | project | — | — |
| microsoft | visio | — | — |
| microsoft | word | — | — |
| microsoft | works | — | — |
| microsoft | works | — | — |
| microsoft | works | — | — |