CVSS: 9.3EPSS: 75%CPEs: 43EXPL: 6CVE-2004-0200 – Microsoft Windows - JPEG Processing Buffer Overrun (MS04-028)
https://notcve.org/view.php?id=CVE-2004-0200
17 Sep 2004 — Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execute arbitrary code via a JPEG image with a small JPEG COM field length that is normalized to a large integer length before a memory copy operation. Desbordamiento de búfer en el motor de proceso de JPEG (JPG) en GDIPlus.dll, usado en varios productos de Microsoft, permite a atacantes remotos ejecutar código de su elección mediante un campo de longitud ... • https://www.exploit-db.com/exploits/474 •
CVSS: 10.0EPSS: 19%CPEs: 1EXPL: 0CVE-2002-0369
https://notcve.org/view.php?id=CVE-2002-0369
26 Jul 2002 — Buffer overflow in ASP.NET Worker Process allows remote attackers to cause a denial of service (restart) and possibly execute arbitrary code via a routine that processes cookies while in StateServer mode. • http://www.iss.net/security_center/static/9276.php •
CVSS: 5.3EPSS: 27%CPEs: 1EXPL: 0CVE-2002-0409
https://notcve.org/view.php?id=CVE-2002-0409
11 Jun 2002 — orderdetails.aspx, as made available to Microsoft .NET developers as example code and demonstrated on www.ibuyspystore.com, allows remote attackers to view the orders of other users by modifying the OrderID parameter. • http://marc.info/?l=bugtraq&m=101518860823788&w=2 •