mirror of
https://github.com/0xMarcio/cve.git
synced 2025-12-30 04:49:42 +00:00
920 B
920 B
CVE-2004-0901
Description
Microsoft Word for Windows 6.0 Converter (MSWRD632.WPC), as used in WordPad, does not properly validate certain data lengths, which allows remote attackers to execute arbitrary code via a .wri, .rtf, and .doc file sent by email or malicious web site, aka "Font Conversion Vulnerability," a different vulnerability than CVE-2004-0571.
POC
Reference
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-041
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-041
Github
No PoCs found on GitHub currently.