Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2004-1120
HistoryJan 10, 2005 - 5:00 a.m.

CVE-2004-1120

2005-01-1005:00:00
[email protected]
web.nvd.nist.gov
29
buffer overflow
network protocol
prozilla
remote code execution

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.3 High

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.6%

JSON

Multiple buffer overflows in (1) http.c, (2) http-retr.c, (3) main.c and other code that handles network protocols in ProZilla 1.3.6-r2 and earlier allow remote servers to execute arbitrary code via a long Location header.

Affected configurations

NVD
Node
prozillaprozilla_download_acceleratorMatch1.0.0
OR
prozillaprozilla_download_acceleratorMatch1.3.0
OR
prozillaprozilla_download_acceleratorMatch1.3.1
OR
prozillaprozilla_download_acceleratorMatch1.3.2
OR
prozillaprozilla_download_acceleratorMatch1.3.3
OR
prozillaprozilla_download_acceleratorMatch1.3.4
OR
prozillaprozilla_download_acceleratorMatch1.3.5
OR
prozillaprozilla_download_acceleratorMatch1.3.5.1
OR
prozillaprozilla_download_acceleratorMatch1.3.5.2
OR
prozillaprozilla_download_acceleratorMatch1.3.6
CPENameOperatorVersion
prozilla:prozilla_download_acceleratorprozilla prozilla download acceleratoreq1.0.0
prozilla:prozilla_download_acceleratorprozilla prozilla download acceleratoreq1.3.0
prozilla:prozilla_download_acceleratorprozilla prozilla download acceleratoreq1.3.1
prozilla:prozilla_download_acceleratorprozilla prozilla download acceleratoreq1.3.2
prozilla:prozilla_download_acceleratorprozilla prozilla download acceleratoreq1.3.3
prozilla:prozilla_download_acceleratorprozilla prozilla download acceleratoreq1.3.4
prozilla:prozilla_download_acceleratorprozilla prozilla download acceleratoreq1.3.5
prozilla:prozilla_download_acceleratorprozilla prozilla download acceleratoreq1.3.5.1
prozilla:prozilla_download_acceleratorprozilla prozilla download acceleratoreq1.3.5.2
prozilla:prozilla_download_acceleratorprozilla prozilla download acceleratoreq1.3.6

Related

nessus 4
openvas 6
osv 1
debian 2
gentoo 1
nvd 1
freebsd 1
cvelist 1
nessus
nessus
Debian DSA-663-1 : prozilla - buffer overflows
2005-02-02 00:00:00
FreeBSD : ProZilla -- server response buffer overflow vulnerabilities (158)
2004-11-30 00:00:00
FreeBSD : ProZilla -- server response buffer overflow vulnerabilities (1a32e8ee-3edb-11d9-8699-00065be4b5b6)
2009-04-23 00:00:00
openvas
openvas
Gentoo Security Advisory GLSA 200411-31 (ProZilla)
2008-09-24 00:00:00
FreeBSD Ports: prozilla
2008-09-04 00:00:00
Debian: Security Advisory (DSA-663-1)
2008-01-17 00:00:00
osv
osv
prozilla - buffer overflows
2005-02-01 00:00:00
debian
debian
[SECURITY] [DSA 663-1] New prozilla packages fix arbitrary code execution
2005-02-01 16:29:28
[SECURITY] [DSA 663-1] New prozilla packages fix arbitrary code execution
2005-02-01 16:29:28
gentoo
gentoo
ProZilla: Multiple vulnerabilities
2004-11-23 00:00:00
nvd
nvd
CVE-2004-1120
2005-01-10 05:00:00
freebsd
freebsd
ProZilla -- server response buffer overflow vulnerabilities
2004-11-23 00:00:00
cvelist
cvelist
CVE-2004-1120
2004-12-01 05:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.3 High

AI Score

Confidence

Low

0.011 Low

EPSS

Percentile

84.6%

JSON
Related for CVE-2004-1120
nessus4openvas6osv1debian2gentoo1nvd1freebsd1cvelist1