CVE-2004-0362

Sažetak

Multiple stack-based buffer overflows in the ICQ parsing routines of the ISS Protocol Analysis Module (PAM) component, as used in various RealSecure, Proventia, and BlackICE products, allow remote attackers to execute arbitrary code via a SRV_MULTI response containing a SRV_USER_ONLINE response packet and a SRV_META_USER response packet with long (1) nickname, (2) firstname, (3) lastname, or (4) email address fields, as exploited by the Witty worm.

Reference

http://marc.info/?l=bugtraq&m=107965651712378&w=2
http://secunia.com/advisories/11073
http://www.ciac.org/ciac/bulletins/o-104.shtml
http://www.eeye.com/html/Research/Advisories/AD20040318.html
http://www.kb.cert.org/vuls/id/947254
http://www.osvdb.org/4355
http://www.securityfocus.com/bid/9913
http://xforce.iss.net/xforce/alerts/id/166
https://exchange.xforce.ibmcloud.com/vulnerabilities/15442
https://exchange.xforce.ibmcloud.com/vulnerabilities/15543

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

11-07-2017 - 01:30

Objavljeno

15-04-2004 - 04:00