Lucene search

K
cve[email protected]CVE-2004-2433
HistoryAug 18, 2005 - 4:00 a.m.

CVE-2004-2433

2005-08-1804:00:00
web.nvd.nist.gov
19
cve-2004-2433
buffer overflow
adm activex
remote code execution
altnet download manager
kazaa
grokkster

8 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.075 Low

EPSS

Percentile

94.1%

Buffer overflow in the IsValidFile function in the ADM ActiveX control for Altnet Download Manager 4.0.0.4 and earlier, as used in Kazaa Media Desktop 1.3 through 2.6.4 and Grokkster 1.3 through 2.6, allows remote attackers to execute arbitrary code via a long bstrFilepath parameter.

Affected configurations

NVD
Node
altnetaltnet_download_managerRange4.0.0.2
OR
altnetaltnet_download_managerMatch4.0.0.4
OR
grokstergroksterMatch1.3
OR
grokstergroksterMatch1.3.3
OR
grokstergroksterMatch2.6
OR
kazaakazaa_media_desktopMatch1.3
OR
kazaakazaa_media_desktopMatch1.3.1
OR
kazaakazaa_media_desktopMatch1.3.2
OR
kazaakazaa_media_desktopMatch1.6.1
OR
kazaakazaa_media_desktopMatch2.0
OR
kazaakazaa_media_desktopMatch2.0.2
OR
kazaakazaa_media_desktopMatch2.6.4

8 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.075 Low

EPSS

Percentile

94.1%

Related for CVE-2004-2433