CVE-2004-1623
Windows XP SP1 - Denial of Service via Malformed WAV File Header
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2004-1623. PoCs published by HexView.
AI-analyzed exploit summary This exploit leverages a malformed WAV file header to trigger a denial of service in Microsoft Windows XP by causing the Windows Explorer process to consume excessive CPU resources. The PoC provides a hex dump of a crafted WAV file that exploits insufficient sanitization of header values.
Description
The WAV file property handler in Windows XP SP1 allows remote attackers to cause a denial of service (infinite loop in Explorer) via a WAV file with an invalid file header whose fmt chunk length is set to 0xFFFFFFFF.
Exploits (1)
This exploit leverages a malformed WAV file header to trigger a denial of service in Microsoft Windows XP by causing the Windows Explorer process to consume excessive CPU resources. The PoC provides a hex dump of a crafted WAV file that exploits insufficient sanitization of header values.