Lucene search

[email protected]CVE-2004-0722

HistoryAug 18, 2004 - 4:00 a.m.

CVE-2004-0722

2004-08-1804:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2004-0722

integer overflow

soapparameter

netscape

mozilla

remote code execution

nvd

7.4 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.837 High

EPSS

Percentile

98.4%

JSON

Integer overflow in the SOAPParameter object constructor in (1) Netscape version 7.0 and 7.1 and (2) Mozilla 1.6, and possibly earlier versions, allows remote attackers to execute arbitrary code.

CPENameOperatorVersion
netscape:navigatornetscape navigatoreq7.1
netscape:navigatornetscape navigatoreq7.0
mozilla:mozillamozillaeq1.6

CPE	Name	Operator	Version
netscape:navigator	netscape navigator	eq	7.1
netscape:navigator	netscape navigator	eq	7.0
mozilla:mozilla	mozilla	eq	1.6

References

ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt

bugzilla.mozilla.org/show_bug.cgi?id=236618

www.idefense.com/application/poi/display?id=117&type=vulnerabilities

www.novell.com/linux/security/advisories/2004_36_mozilla.html

www.redhat.com/support/errata/RHSA-2004-421.html

www.securityfocus.com/bid/15495

exchange.xforce.ibmcloud.com/vulnerabilities/16862

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4629

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9378

7.4 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.837 High

EPSS

Percentile

98.4%

JSON

Related for CVE-2004-0722

nessus6 securityvulns1 openvas6 freebsd1 checkpoint_advisories1 redhat1 suse7 slackware1