CVE-2004-1305

CVE Database · CVE-2004-1305

CVE-2004-1305

· N/AModified

CVSS v3.1

N/A

EPSS

58.58%

Published

Dec 23, 2004

Modified

Apr 15, 2026

Public PoC / Exploit (2)

All weaponized →

Exploit-DBMicrosoft Windows Kernel - '.ANI' File Parsing Crash TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The Windows Animated Cursor (ANI) capability in Windows NT, Windows 2000 through SP4, Windows XP through SP1, and Windows 2003 allow remote attackers to cause a denial of service via (1) the frame number set to zero, which causes an invalid memory address to be used and leads to a kernel crash, or (2) the rate number set to zero, which leads to resource exhaustion and hang.

Affected Products (67)

nortel · ip_softphone_2050vulnerable

nortel · media_communication_server_5100vulnerable

nortel · media_communication_server_5200vulnerable

nortel · media_processing_servervulnerable

nortel · periphonicsvulnerable

nortel · symposium_agentvulnerable

nortel · symposium_network_control_centervulnerable

nortel · symposium_tapi_service_providervulnerable

nortel · symposium_web_centre_portalvulnerable

nortel · symposium_web_clientvulnerable