Lucene search

[email protected]CVE-2004-0800

HistoryAug 25, 2004 - 4:00 a.m.

CVE-2004-0800

2004-08-2504:00:00

[email protected]

web.nvd.nist.gov

cve-2004-0800

format string vulnerability

cde mailer

dtmail

solaris 8

solaris 9

local privilege escalation

6.6 Medium

AI Score

Confidence

High

4.6 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

9.5%

JSON

Format string vulnerability in CDE Mailer (dtmail) on Solaris 8 and 9 allows local users to gain privileges via format strings in the argv[0] value.

Affected configurations

NVD

Node

avayacall_management_system_serverMatch9.0

avayacall_management_system_serverMatch11.0

avayacall_management_system_serverMatch12.0

sundtmail

Node

sunsolarisMatch8.0x86

sunsolarisMatch9.0sparc

sunsolarisMatch9.0x86

sunsunosMatch5.8

CPENameOperatorVersion
avaya:call_management_system_serveravaya call management system servereq9.0
avaya:call_management_system_serveravaya call management system servereq11.0
avaya:call_management_system_serveravaya call management system servereq12.0
sun:dtmailsun dtmaileq*

CPE	Name	Operator	Version
avaya:call_management_system_server	avaya call management system server	eq	9.0
avaya:call_management_system_server	avaya call management system server	eq	11.0
avaya:call_management_system_server	avaya call management system server	eq	12.0
sun:dtmail	sun dtmail	eq	*

References

sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57627

www.ciac.org/ciac/bulletins/o-202.shtml

www.idefense.com/application/poi/display?id=132&type=vulnerabilities

www.kb.cert.org/vuls/id/928598

www.securityfocus.com/bid/11027

exchange.xforce.ibmcloud.com/vulnerabilities/17095

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A4030

6.6 Medium

AI Score

Confidence

High

4.6 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:L/AC:L/Au:N/C:P/I:P/A:P

0.0004 Low

EPSS

Percentile

9.5%

JSON

Related for CVE-2004-0800

cert1 nvd1 cvelist1