Lucene search

[email protected]CVE-2004-0368

HistoryMay 04, 2004 - 4:00 a.m.

CVE-2004-0368

2004-05-0404:00:00

CWE-119

[email protected]

web.nvd.nist.gov

cve-2004-0368

double free

dtlogin

cde

solaris

hp-ux

operating systems

remote code execution

xdmcp packet

7.4 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.852 High

EPSS

Percentile

98.5%

JSON

Double free vulnerability in dtlogin in CDE on Solaris, HP-UX, and other operating systems allows remote attackers to execute arbitrary code via a crafted XDMCP packet.

CPENameOperatorVersion
open_group:cde_common_desktop_environmentopen group cde common desktop environmenteq1.0.1
open_group:cde_common_desktop_environmentopen group cde common desktop environmenteq1.2
xi_graphics:dextopxi graphics dextopeq2.1
open_group:cde_common_desktop_environmentopen group cde common desktop environmenteq2.0
xi_graphics:dextopxi graphics dextopeq3.0
open_group:cde_common_desktop_environmentopen group cde common desktop environmenteq2.1.20
open_group:cde_common_desktop_environmentopen group cde common desktop environmenteq1.0.2
open_group:cde_common_desktop_environmentopen group cde common desktop environmenteq2.1
open_group:cde_common_desktop_environmentopen group cde common desktop environmenteq1.1
ibm:aixibm aixeq5.2

CPE	Name	Operator	Version
open_group:cde_common_desktop_environment	open group cde common desktop environment	eq	1.0.1
open_group:cde_common_desktop_environment	open group cde common desktop environment	eq	1.2
xi_graphics:dextop	xi graphics dextop	eq	2.1
open_group:cde_common_desktop_environment	open group cde common desktop environment	eq	2.0
xi_graphics:dextop	xi graphics dextop	eq	3.0
open_group:cde_common_desktop_environment	open group cde common desktop environment	eq	2.1.20
open_group:cde_common_desktop_environment	open group cde common desktop environment	eq	1.0.2
open_group:cde_common_desktop_environment	open group cde common desktop environment	eq	2.1
open_group:cde_common_desktop_environment	open group cde common desktop environment	eq	1.1
ibm:aix	ibm aix	eq	5.2

Rows per page:

1-10 of 121

References

ftp://patches.sgi.com/support/free/security/advisories/20040801-01-P

archives.neohapsis.com/archives/vulnwatch/2004-q1/0064.html

lists.immunitysec.com/pipermail/dailydave/2004-March/000402.html

secunia.com/advisories/11210/

secunia.com/advisories/11214/

secunia.com/advisories/11495/

secunia.com/advisories/11614/

sunsolve.sun.com/search/document.do?assetkey=1-26-101478-1

sunsolve.sun.com/search/document.do?assetkey=1-26-57539-1&searchclause=security

www.auscert.org.au/render.html?it=4103&cid=3734

www.ciac.org/ciac/bulletins/o-129.shtml

www.immunitysec.com/downloads/dtlogin.sxw.pdf

www.kb.cert.org/vuls/id/179804

www.securityfocus.com/bid/9958

exchange.xforce.ibmcloud.com/vulnerabilities/15581

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1436

7.4 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.852 High

EPSS

Percentile

98.5%

JSON

Related for CVE-2004-0368

nessus8 cert1 checkpoint_advisories1 openvas1 cvelist1