CVE-2003-0906

CVE Database · CVE-2003-0906

CVE-2003-0906

· N/AModified

CVSS v3.1

N/A

EPSS

25.25%

Published

Jun 1, 2004

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Buffer overflow in the rendering for (1) Windows Metafile (WMF) or (2) Enhanced Metafile (EMF) image formats in Microsoft Windows NT 4.0 SP6a, 2000 SP2 through SP4, and XP SP1 allows remote attackers to execute arbitrary code via a malformed WMF or EMF image.

Affected Products (4)

microsoft · windows_2000vulnerable

microsoft · windows_ntvulnerable

microsoft · windows_xpvulnerable

References (14)

http://www.kb.cert.org/vuls/id/547028

PatchThird Party AdvisoryUS Government Resource

http://www.securityfocus.com/bid/10120

http://www.us-cert.gov/cas/techalerts/TA04-104A.html

Third Party AdvisoryUS Government Resource

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-011

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1064

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A897

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A959

http://www.kb.cert.org/vuls/id/547028

KEV Catalog EPSS Scores Vendors All CVEs