Lucene search
Ubuntu.comUB:CVE-2004-0771HistoryNov 23, 2004 - 12:00 a.m.
CVE-2004-0771
2004-11-2300:00:00
ubuntu.com
ubuntu.com
5
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.021 Low
EPSS
Percentile
89.0%
Buffer overflow in the extract_one function from lhext.c in LHA may allow
attackers to execute arbitrary code via a long w (working directory)
command line option, a different issue than CVE-2004-0769. NOTE: this issue
may be REJECTED if there are not any cases in which LHA is setuid or is
otherwise used across security boundaries.
Related
cve
cve
ubuntucve
ubuntucve
CVE-2004-0769
2004-08-18 00:00:00
CVE-2004-0694
2011-02-04 00:00:00
openvas
openvas
FreeBSD Ports: lha
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200409-13 (lha)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200409-13 (lha)
2008-09-24 00:00:00
nessus
nessus
Fedora Core 2 : lha-1.14i-14.1 (2004-295)
2004-09-09 00:00:00
RHEL 2.1 : lha (RHSA-2004:440)
2004-09-09 00:00:00
FreeBSD : lha -- numerous vulnerabilities when extracting archives (91)
2004-09-24 00:00:00
gentoo
gentoo
LHa: Multiple vulnerabilities
2004-09-08 00:00:00
redhat
redhat
(RHSA-2004:440) lha security update
2004-09-07 00:00:00
(RHSA-2004:323) lha security update
2004-09-01 00:00:00
freebsd
freebsd
lha -- numerous vulnerabilities when extracting archives
2004-05-17 00:00:00
10 High
CVSS2
Access Vector
NETWORK
Access Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
0.021 Low
EPSS
Percentile
89.0%
Related for UB:CVE-2004-0771