CVE-2004-1305
CVE-2004-1305 is a medium-severity vulnerability in Nortel Ip Softphone 2050 with a CVSS 2.0 base score of 5.0. Its EPSS exploit-prediction score of 62% places it in the 99th percentile, indicating an elevated likelihood of exploitation.
Key facts
- Severity: Medium (CVSS 2.0 base score 5.0)
- EPSS exploit prediction: 62% (99th percentile)
- Actively exploited: Not listed in CISA KEV
- Affected product: Nortel Ip Softphone 2050
- Published:
- Last modified:
Description
The Windows Animated Cursor (ANI) capability in Windows NT, Windows 2000 through SP4, Windows XP through SP1, and Windows 2003 allow remote attackers to cause a denial of service via (1) the frame number set to zero, which causes an invalid memory address to be used and leads to a kernel crash, or (2) the rate number set to zero, which leads to resource exhaustion and hang.
Frequently asked questions
- What is CVE-2004-1305?
- The Windows Animated Cursor (ANI) capability in Windows NT, Windows 2000 through SP4, Windows XP through SP1, and Windows 2003 allow remote attackers to cause a denial of service via (1) the frame number set to zero, which causes an invalid memory address to be used and leads to a kernel crash, or (2) the rate number set to zero, which leads to resource exhaustion and hang.
- How severe is CVE-2004-1305?
- CVE-2004-1305 has a CVSS 2.0 base score of 5.0, rated medium severity.
- Is CVE-2004-1305 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 62% (99th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2004-1305?
- CVE-2004-1305 primarily affects Nortel Ip Softphone 2050. In total, 67 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-2004-1305?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- When was CVE-2004-1305 published?
- CVE-2004-1305 was published on 2004-12-23 and last updated on 2026-06-16.
References
- http://marc.info/?l=bugtraq&m=110382854111833&w=2
- http://www.kb.cert.org/vuls/id/177584
- http://www.kb.cert.org/vuls/id/697136
- http://www.us-cert.gov/cas/techalerts/TA05-012A.html
- http://www.xfocus.net/flashsky/icoExp/
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-002
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18667
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1304
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A2580
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3216
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3957
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A712
Affected products (67)
- cpe:2.3:a:nortel:ip_softphone_2050:*:*:*:*:*:*:*:*
- cpe:2.3:a:nortel:media_communication_server_5100:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:nortel:media_communication_server_5200:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:nortel:media_processing_server:*:*:*:*:*:*:*:*
- cpe:2.3:a:nortel:periphonics:*:*:*:*:*:*:*:*
- cpe:2.3:a:nortel:symposium_agent:*:*:*:*:*:*:*:*
- cpe:2.3:a:nortel:symposium_network_control_center:*:*:*:*:*:*:*:*
- cpe:2.3:a:nortel:symposium_tapi_service_provider:*:*:*:*:*:*:*:*
- cpe:2.3:a:nortel:symposium_web_centre_portal:*:*:*:*:*:*:*:*
- cpe:2.3:a:nortel:symposium_web_client:*:*:*:*:*:*:*:*
- cpe:2.3:h:nortel:symposium_call_center_server:*:*:*:*:*:*:*:*
- cpe:2.3:h:nortel:symposium_express_call_center:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp1:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp2:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp3:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2000:*:sp4:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:enterprise:*:64-bit:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:enterprise_64-bit:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:r2:*:64-bit:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:r2:*:datacenter_64-bit:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:standard:*:64-bit:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_2003_server:web:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_98:*:gold:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_98se:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_me:*:*:*:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_nt:4.0:*:enterprise_server:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_nt:4.0:*:server:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_nt:4.0:*:terminal_server:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_nt:4.0:*:workstation:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_nt:4.0:sp1:enterprise_server:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_nt:4.0:sp1:server:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_nt:4.0:sp1:terminal_server:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_nt:4.0:sp1:workstation:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_nt:4.0:sp2:enterprise_server:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_nt:4.0:sp2:server:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_nt:4.0:sp2:terminal_server:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_nt:4.0:sp2:workstation:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_nt:4.0:sp3:enterprise_server:*:*:*:*:*
- cpe:2.3:o:microsoft:windows_nt:4.0:sp3:server:*:*:*:*:*
More vulnerabilities in Nortel Ip Softphone 2050
- CVE-2007-5636 — High (CVSS 7.5): Buffer overflow in the Nortel UNIStim IP Softphone 2050 allows remote attackers to cause a denial of service…
- CVE-2007-5639 — High (CVSS 7.1): The Nortel UNIStim IP Softphone 2050, IP Phone 1140E, and other Nortel IP Phone, Mobile Voice Client, and WLAN Handsets…
- CVE-2004-1319 — Medium (CVSS 5.0): The DHTML Edit Control (dhtmled.ocx) allows remote attackers to inject arbitrary web script into other domains by…
- CVE-2004-0839 — Medium (CVSS 5.0): Internet Explorer in Windows XP SP2, and other versions including 5.01 and 5.5, allows remote attackers to install…