CVE-2004-1288

o3read 0.0.3 - Buffer Overflow via Crafted SXW File

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-1288. PoCs published by Wiktor Kopec.

AI-analyzed exploit summary The provided content is a vulnerability description for CVE-2004-1288, detailing a buffer overflow in o3read during HTML parsing. It lacks actual exploit code but references a remote exploit archive.

Description

Buffer overflow in the parse_html function in o3read.c for o3read 0.0.3 allows remote attackers to execute arbitrary code via a crafted SXW file.

Exploits (1)

exploitdb WRITEUP VERIFIED
by Wiktor Kopec · textremotelinux
https://www.exploit-db.com/exploits/25010

The provided content is a vulnerability description for CVE-2004-1288, detailing a buffer overflow in o3read during HTML parsing. It lacks actual exploit code but references a remote exploit archive.

Classification
Writeup 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target: o3read (version unspecified)
No auth needed
Prerequisites: User interaction to process a malicious HTML file
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Vendor Advisory x_refsource_misc
http://tigger.uic.edu/~jlongs2/holes/o3read.txt
Third Party Advisory vendor-advisory x_refsource_gentoo
http://www.gentoo.org/security/en/glsa/glsa-200501-20.xml
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/18547

Scores

EPSS 0.1044
EPSS Percentile 95.2%

Details

Status published
Products (1)
siag/o3read .3
Published Jan 10, 2005
Tracked Since Feb 18, 2026