Lucene search

[email protected]CVE-2004-2016

HistoryMay 10, 2005 - 4:00 a.m.

CVE-2004-2016

2005-05-1004:00:00

[email protected]

web.nvd.nist.gov

cve-2004-2016

buffer overflow

netchat

http server

remote code execution

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.5 High

AI Score

Confidence

Low

0.05 Low

EPSS

Percentile

92.9%

JSON

Stack-based buffer overflow in the HTTP server in NetChat 7.3 and earlier allows remote attackers to execute arbitrary code via a long GET request.

Affected configurations

NVD

Node

netchatsubnet_chat_applicationMatch7.0

netchatsubnet_chat_applicationMatch7.1

netchatsubnet_chat_applicationMatch7.2

netchatsubnet_chat_applicationMatch7.3

CPENameOperatorVersion
netchat:subnet_chat_applicationnetchat subnet chat applicationeq7.0
netchat:subnet_chat_applicationnetchat subnet chat applicationeq7.1
netchat:subnet_chat_applicationnetchat subnet chat applicationeq7.2
netchat:subnet_chat_applicationnetchat subnet chat applicationeq7.3

CPE	Name	Operator	Version
netchat:subnet_chat_application	netchat subnet chat application	eq	7.0
netchat:subnet_chat_application	netchat subnet chat application	eq	7.1
netchat:subnet_chat_application	netchat subnet chat application	eq	7.2
netchat:subnet_chat_application	netchat subnet chat application	eq	7.3

References

marc.info/?l=bugtraq&m=108481422130354&w=2

secunia.com/advisories/11637

www.securityfocus.com/bid/10353

exchange.xforce.ibmcloud.com/vulnerabilities/16165

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.5 High

AI Score

Confidence

Low

0.05 Low

EPSS

Percentile

92.9%

JSON

Related for CVE-2004-2016

nvd1 cvelist1