Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
10
CVSSv2

CVE-2004-0212

Published: 06/08/2004 Updated: 30/04/2019
CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10
VMScore: 1000
Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C
Subscribe to Microsoft

Vulnerability Summary

Stack-based buffer overflow in the Task Scheduler for Windows 2000 and XP, and Internet Explorer 6 on Windows NT 4.0, allows local or remote malicious users to execute arbitrary code via a .job file containing long parameters, as demonstrated using Internet Explorer and accessing a .job file on an anonymous share.

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft ie 6.0

avaya definity one media server

avaya s8100

avaya ip600 media servers

microsoft windows 2000

microsoft windows nt 4.0

avaya modular messaging message storage server s3400

microsoft windows xp

Exploits

Exploit DB: Microsoft Windows Task Scheduler (Windows XP/2000) - '.job' (MS04-022)
//************************************************************* // Microsoft Windows 2K/XP Task Scheduler Vulnerability (MS04-022) // Proof-of-Concept Exploit for English WinXP SP1 // 15 Jul 2004 // // Running this will create a file "jjob" When explorerexe or any // file-open dialog box accesses the directory containing this file, // notepad ...
Exploit DB: Microsoft Windows XP - Task Scheduler '.job' Universal (MS04-022)
/* HOD-ms04022-task-explc: * * (MS04-022) Microsoft Windows XP Task Scheduler (job) Universal Exploit * * Exploit version 01 coded by * * * ::[ houseofdabus ]:: * * * [at inbox dot ru] * ------------------------------------------------------------------- * Tested on: * - Internet Explorer 60 (SP1) (iexploreexe ...

References

NVD-CWE-Otherhttp://www.us-cert.gov/cas/techalerts/TA04-196A.htmlhttp://www.ngssoftware.com/advisories/mstaskjob.txthttp://www.kb.cert.org/vuls/id/228028http://secunia.com/advisories/12060http://marc.info/?l=bugtraq&m=108981403025596&w=2http://marc.info/?l=bugtraq&m=108981273009250&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/16591https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3428https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1964https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1781https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1344https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-022https://nvd.nist.govhttps://www.exploit-db.com/exploits/353/https://www.kb.cert.org/vuls/id/228028
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322cross-site request forgeryunauthorizedCVE-2024-33925reflected XSSCVE-2023-51580CVE-2023-51579CVE-2015-2051CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook