← Back

CVE-2003-1048

nvd nist
Published: Jul 27, 2004Modified: Apr 16, 2026

JSON object

Loading...
7.8
Vector
CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H
Exploitability: 1.8 / Impact: 5.9
Source: NVD

Description

Double free vulnerability in mshtml.dll for certain versions of Internet Explorer 6.x allows remote attackers to cause a denial of service (application crash) via a malformed GIF image.

Affected (18)

Microsoft
8 products
Internet Explorer
Outlook
Windows 98
Windows 98se
Windows Me
Windows Nt
Windows Server 2003
Windows Xp
Configuration A
18 vulnerable
Vulnerable SoftwareAffected Versions
Microsoft
Internet Explorer
Version 5.01 sp2
Internet Explorer
Version 5.01 sp3
Internet Explorer
Version 5.01 sp4
Internet Explorer
Version 5.5 sp2
Internet Explorer
Version 6.0
Internet Explorer
Version 6.0 sp1
Microsoft
Outlook
Version 2000 sp2
Outlook
Version 2000 sp3
Outlook
Version 2000 sp4
Windows 98
All versions
Windows 98se
All versions
Windows Me
All versions
Microsoft
Windows Nt
Version 4.0 sp6
Windows Nt
Version 4.0 sp6a
Windows Nt
Version 4.0 sp6a
Windows Server 2003
All versions
Microsoft
Windows Xp
All versions
Windows Xp
All versions

Related CWEs

CWE-415
Double Free
The product calls free() twice on the same memory address, potentially leading to modification of unexpected memory locations.

References (32)

Source: cve@mitre.org
Broken Link
Source: cve@mitre.org
Broken Link
Source: cve@mitre.org
Broken Link
Source: cve@mitre.org
Broken Link
Source: cve@mitre.org
Third Party AdvisoryUS Government Resource
Source: cve@mitre.org
Broken LinkThird Party AdvisoryVDB EntryVendor Advisory
Source: cve@mitre.org
Broken LinkThird Party AdvisoryUS Government Resource
Source: cve@mitre.org
PatchVendor Advisory
Source: cve@mitre.org
Third Party AdvisoryVDB Entry
Source: cve@mitre.org
Broken Link
Source: cve@mitre.org
Broken Link
Source: cve@mitre.org
Broken Link
Source: cve@mitre.org
Broken Link
Source: cve@mitre.org
Broken Link
Source: cve@mitre.org
Broken Link
Source: cve@mitre.org
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryUS Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party AdvisoryVDB EntryVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Broken LinkThird Party AdvisoryUS Government Resource
Source: af854a3a-2127-422b-91ae-364da2661108
PatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link

Timeline

No history available yet.