CVE-2004-0474

Help Center (HelpCtr.exe) may allow remote attackers to read or execute arbitrary files via an "http://" or "file://" argument to the topic parameter in an hcp:// URL. NOTE: since the initial report of this problem, several researchers have been unable to reproduce this issue.
Configurations

Configuration 1 (hide)

OR cpe:2.3:o:microsoft:windows_xp:*:*:home:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:*:gold:professional:*:*:*:*:*
cpe:2.3:o:microsoft:windows_xp:*:sp1:home:*:*:*:*:*

History

20 Nov 2024, 23:48

Type Values Removed Values Added
References () http://archives.neohapsis.com/archives/fulldisclosure/2004-02/0440.html - Exploit, Vendor Advisory () http://archives.neohapsis.com/archives/fulldisclosure/2004-02/0440.html - Exploit, Vendor Advisory
References () http://archives.neohapsis.com/archives/fulldisclosure/2004-02/0450.html - () http://archives.neohapsis.com/archives/fulldisclosure/2004-02/0450.html -
References () http://archives.neohapsis.com/archives/fulldisclosure/2004-02/0688.html - () http://archives.neohapsis.com/archives/fulldisclosure/2004-02/0688.html -
References () http://marc.info/?l=bugtraq&m=107652584102003&w=2 - () http://marc.info/?l=bugtraq&m=107652584102003&w=2 -
References () http://www.securityfocus.com/archive/1/353248 - Exploit () http://www.securityfocus.com/archive/1/353248 - Exploit
References () http://www.securityfocus.com/bid/9621 - Exploit, Vendor Advisory () http://www.securityfocus.com/bid/9621 - Exploit, Vendor Advisory
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/15101 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/15101 -

Information

Published : 2004-07-07 04:00

Updated : 2024-11-20 23:48


NVD link : CVE-2004-0474

Mitre link : CVE-2004-0474

CVE.ORG link : CVE-2004-0474


JSON object : View

Products Affected

microsoft

  • windows_xp