CVE-2004-0284

CVE Database · CVE-2004-0284

CVE-2004-0284

· N/AModified

CVSS v3.1

N/A

EPSS

16.77%

Published

Nov 23, 2004

Modified

Apr 15, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Microsoft Internet Explorer 6.0, Outlook 2002, and Outlook 2003 allow remote attackers to cause a denial of service (CPU consumption), if "Do not save encrypted pages to disk" is disabled, via a web site or HTML e-mail that contains two null characters (%00) after the host name.

Affected Products (6)

microsoft · ievulnerable

microsoft · internet_explorervulnerable

microsoft · outlookvulnerable

References (6)

http://marc.info/?l=bugtraq&m=107643134712133&w=2

http://www.securityfocus.com/bid/9629

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/15127

http://marc.info/?l=bugtraq&m=107643134712133&w=2

http://www.securityfocus.com/bid/9629

PatchVendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/15127

KEV Catalog EPSS Scores Vendors All CVEs