Buffer Overflow Vulnerability in HyperTerminal Application by Microsoft
CVE-2004-0568

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Nt; Windows 2003 Server; Windows Xp; Windows 2000
Vendor: CVE Published:; 10 January 2005

What is CVE-2004-0568?

HyperTerminal, an application provided by Microsoft, is susceptible to a buffer overflow due to improper validation of session file data length. This flaw enables remote attackers to execute arbitrary code by leveraging specially crafted session files (.ht) or by invoking malicious links through Telnet URLs or email messages. Users of Windows NT 4.0, Windows 2000, Windows XP, and Windows Server 2003 are particularly at risk. Implementing security patches and adhering to best practices can mitigate the potential threats posed by this vulnerability.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/18336

vdb-entryx_refsource_XF

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

EPSS Score

21% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 10, 2005
Vulnerability Reserved
Jun 15, 2004