Lucene search

[email protected]CVE-2004-0453

HistoryAug 06, 2004 - 4:00 a.m.

CVE-2004-0453

2004-08-0604:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

vice

emulator

vulnerability

format string

denial of service

code execution

7.6 High

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

18.9%

JSON

Format string vulnerability in the monitor “memory dump” command in VICE 1.6 to 1.14 allows local users to cause a denial of service (emulator crash) and possibly execute arbitrary code via format string specifiers in an output string.

CPENameOperatorVersion
vice:viceviceeq1.6
vice:viceviceeq1.13
vice:viceviceeq1.14

CPE	Name	Operator	Version
vice:vice	vice	eq	1.6
vice:vice	vice	eq	1.13
vice:vice	vice	eq	1.14

References

marc.info/?l=bugtraq&m=108723630730487&w=2

www.securityfocus.com/bid/10543

exchange.xforce.ibmcloud.com/vulnerabilities/16404

7.6 High

AI Score

Confidence

High

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.001 Low

EPSS

Percentile

18.9%

JSON

Related for CVE-2004-0453

debiancve1