Zero-friction vulnerability management platform

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

CVE-2004-0568

CVE information

Published

17 years ago

Last Modified

3 years ago

CVSSv2.0 Severity

High

Impact Analysis

Description

HyperTerminal application for Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 does not properly validate the length of a value that is saved in a session file, which allows remote attackers to execute arbitrary code via a malicious HyperTerminal session file (.ht), web site, or Telnet URL contained in an e-mail message, triggering a buffer overflow..

CVSSv2.0 Score

Severity
High
Base Score
10/10
Exploit Score
10/10
Access Vector
Network
Access Complexity
Low
Authentication Required
None
Impact Score
10/10
Confidentiality Impact
Complete
Availability Impact
Complete
Integrity Impact
Complete

Products Affected

CPE Affected Vulnerable Excluding Edit
cpe:2.3:o:microsoft:windows_nt:4.0:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:alpha:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:workstation:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_2003_server:web:sp1_beta_1:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_xp:*:sp1:home:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:enterprise_server:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_2003_server:web:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_2003_server:enterprise:*:64-bit:
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_2003_server:enterprise:sp1_beta_
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:server:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:alpha:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:workstation:*:*:*:*:
  Yes
- -
cpe:2.3:o:microsoft:windows_xp:*:*:64-bit:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_2003_server:datacenter_64-bit:sp
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:*:server:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:*:terminal_server_alpha:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:alpha:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_xp:*:sp2:home:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:*:alpha:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:server:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_2003_server:enterprise_64-bit:*:
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:terminal_server:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_xp:*:*:media_center:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_xp:*:gold:professional:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_2003_server:standard:sp1_beta_1:
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:alpha:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:enterprise_server:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:server:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_xp:*:sp2:media_center:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_2003_server:r2:sp1_beta_1:*:*:*:
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:*:terminal_server:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:workstation:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:alpha:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:terminal_server:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:workstation:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:server:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_xp:*:sp1:media_center:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_2003_server:r2:*:datacenter_64-b
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:*:enterprise_server:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:terminal_server:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:workstation:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:enterprise_server:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:server:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:terminal_server:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:alpha:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_xp:*:sp1:64-bit:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:alpha:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp1:enterprise_server:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:server:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:terminal_server:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:workstation:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp4:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:enterprise_server:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp6:workstation:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_xp:*:*:home:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:*:workstation:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp2:enterprise_server:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:terminal_server:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_2003_server:standard:*:64-bit:*:
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp6a:enterprise_server:*:
  Yes
- -
cpe:2.3:o:microsoft:windows_2003_server:r2:*:64-bit:*:*:*:*:
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp3:*:*:*:*:*:*
  Yes
- -
cpe:2.3:o:microsoft:windows_2003_server:enterprise_64-bit:sp
  Yes
- -
cpe:2.3:o:microsoft:windows_nt:4.0:sp5:server:*:*:*:*:*
  Yes
- -