Buffer Overflow Vulnerability in Microsoft Office XP
CVE-2004-0848

Currently unrated

Key Information:

Vendor

Microsoft

Status
Vendor
CVE Published:
8 February 2005

What is CVE-2004-0848?

A buffer overflow vulnerability in Microsoft Office XP can be exploited by remote attackers. This occurs through specially crafted URLs linked to document files. Specifically, attackers can execute arbitrary code via long inputs following a null byte (%00) in .doc filenames or a carriage return (%0a) in .rtf filenames. This loophole poses a significant risk for users, making it critical to apply the necessary patches and updates.

References

EPSS Score

42% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2004-0848 : Buffer Overflow Vulnerability in Microsoft Office XP