Unrated severityNVD Advisory· Published Jan 3, 2005· Updated Jun 16, 2026
CVE-2004-1312
CVE-2004-1312
Description
A bug in the HTML parser in a certain Microsoft HTML library, as used in various third party products, may allow remote attackers to cause a denial of service via certain strings, as reported in GFI MailEssentials for Exchange 9 and 10, and GFI MailSecurity for Exchange 8, which causes emails to remain in IIS or Exchange mail queues.
Affected products
6cpe:2.3:a:gfi:mailessentials:10.0:*:exchange_smtp:*:*:*:*:*+ 2 more
- cpe:2.3:a:gfi:mailessentials:10.0:*:exchange_smtp:*:*:*:*:*
- cpe:2.3:a:gfi:mailessentials:10.1:*:exchange_smtp:*:*:*:*:*
- cpe:2.3:a:gfi:mailessentials:9.0:*:exchange_smtp:*:*:*:*:*
- cpe:2.3:a:gfi:mailsecurity:8.0:*:exchange_smtp:*:*:*:*:*
- Range: 8
- Range: 9, 10
Patches
Vulnerability mechanics
References
4- kbase.gfi.com/showarticle.aspnvdPatchVendor Advisory
- www.csis.dk/default.aspnvdVendor Advisory
- secunia.com/advisories/13708nvd
- www.securityfocus.com/bid/12148nvd
News mentions
0No linked articles in our index yet.