CVE-2003-0469

Windows HTML Converter - Buffer Overflow via HR Tag Align Attribute

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2003-0469. PoCs published by Digital Scream.

AI-analyzed exploit summary This exploit leverages a buffer overflow vulnerability in the HTML converter of Microsoft Windows via an excessively large 'Align' attribute in the 'HR' tag. It executes arbitrary code by overwriting internal buffers when processed by applications like Internet Explorer.

Description

Buffer overflow in the HTML Converter (HTML32.cnv) on various Windows operating systems allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via cut-and-paste operation, as demonstrated in Internet Explorer 5.0 using a long "align" argument in an HR tag.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Digital Scream · textremotewindows

https://www.exploit-db.com/exploits/22824

View Code ZIP pw:eip

This exploit leverages a buffer overflow vulnerability in the HTML converter of Microsoft Windows via an excessively large 'Align' attribute in the 'HR' tag. It executes arbitrary code by overwriting internal buffers when processed by applications like Internet Explorer.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: Microsoft Windows (HTML Converter in Internet Explorer)

No auth needed

Prerequisites: Vulnerable version of Microsoft Windows with Internet Explorer

MITRE ATT&CK