← CVECheck
HomeVulnerabilities

CVE-2004-1649 — HIGH severity vulnerability (Buffer overflow in Microsoft Msinfo32.exe might allow local)

Buffer overflow in Microsoft Msinfo32.exe might allow local users to execute arbitrary code via a long filename in the msinfo_file command line parameter. NOTE: this issue might not cross security boundaries, so it may be REJECTED in the future.

CVE IDCVE-2004-1649
SeverityHIGH
CVSS score7.2
CVSS vectorAV:L/AC:L/Au:N/C:C/I:C/A:C
CWENVD-CWE-Other
StatusModified
Published2004-08-31
Last modified2026-04-16
DescriptionBuffer overflow in Microsoft Msinfo32.exe might allow local users to execute arbitrary code via a long filename in the msinfo_file command line parameter. NOTE: this issue might not cross security boundaries, so it may be REJECTED in the future.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →