CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 0CVE-2004-0398
https://notcve.org/view.php?id=CVE-2004-0398
Heap-based buffer overflow in the ne_rfc1036_parse date parsing function for the neon library (libneon) 0.24.5 and earlier, as used by cadaver before 0.22, allows remote WebDAV servers to execute arbitrary code on the client. Desbordamiento de búfer en la función de proceso de de fecha ne_rfc1036_parse de la librería neon (libneon) 0.24.5 y anteriores, usada en cadaver 0.22 permite a servidores WebDAV ejecutar código arbitrario en el cliente. • http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0982.html http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000841 http://marc.info/?l=bugtraq&m=108498433632333&w=2 http://marc.info/?l=bugtraq&m=108500057108022&w=2 http://secunia.com/advisories/11638 http://secunia.com/advisories/11650 http://secunia.com/advisories/11673 http://security.gentoo.org/glsa/glsa-200405-13.xml http://security.gentoo.org/glsa/glsa-200405-15.xml http://www.ciac.org/ci • CWE-787: Out-of-bounds Write •
CVSS: 10.0EPSS: 5%CPEs: 2EXPL: 0CVE-2004-0434
https://notcve.org/view.php?id=CVE-2004-0434
k5admind (kadmind) for Heimdal allows remote attackers to execute arbitrary code via a Kerberos 4 compatibility administration request whose framing length is less than 2, which leads to a heap-based buffer overflow. k5admind (kadmind) de Heimdal permite a atacantes remotos ejecutar código arbitrario mediante una petición de administración de Kerberos 4 con longitud de marco menor de 2, lo que conduce a un desbordameinte de búfer basado en el montón. • ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:09.kadmind.asc http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/020998.html http://marc.info/?l=bugtraq&m=108386148126457&w=2 http://security.gentoo.org/glsa/glsa-200405-23.xml http://www.debian.org/security/2004/dsa-504 https://exchange.xforce.ibmcloud.com/vulnerabilities/16071 • CWE-131: Incorrect Calculation of Buffer Size •
CVSS: 6.8EPSS: 0%CPEs: 5EXPL: 1CVE-2004-0179 – Neon WebDAV Client Library 0.2x - Format String
https://notcve.org/view.php?id=CVE-2004-0179
Multiple format string vulnerabilities in (1) neon 0.24.4 and earlier, and other products that use neon including (2) Cadaver, (3) Subversion, and (4) OpenOffice, allow remote malicious WebDAV servers to execute arbitrary code. Multiples vulenerabilidades de cadena de formato en (1) neon 0.24.4 y anteriores, y otros productos que usan neon incluyendo (2) Cadaver, (3) Subversion, o (4) OpenOffice, permite a servidores remotos WebDAV maliciosos ejecutar código arbitrario. • https://www.exploit-db.com/exploits/23999 ftp://patches.sgi.com/support/free/security/advisories/20040404-01-U.asc http://lists.suse.com/archive/suse-security-announce/2004-Apr/0002.html http://lists.suse.com/archive/suse-security-announce/2004-Apr/0003.html http://marc.info/?l=bugtraq&m=108213873203477&w=2 http://marc.info/?l=bugtraq&m=108214147022626&w=2 http://secunia.com/advisories/11363 http://security.gentoo.org/glsa/glsa-200405-01.xml http://security.gentoo. • CWE-134: Use of Externally-Controlled Format String •
CVSS: 10.0EPSS: 0%CPEs: 2EXPL: 0CVE-2003-0648
https://notcve.org/view.php?id=CVE-2003-0648
Multiple buffer overflows in vfte, based on FTE, before 0.50, allow local users to execute arbitrary code. Múltiples desbordamientos de búfer en vfte, basado en fte, anteriores a 0.50, permite a usuarios locales ejecutar código arbitrario • http://secunia.com/advisories/11290 http://securitytracker.com/id?1009655 http://securitytracker.com/id?1009656 http://www.debian.org/security/2004/dsa-472 http://www.kb.cert.org/vuls/id/354838 http://www.kb.cert.org/vuls/id/900964 http://www.securityfocus.com/bid/10041 https://exchange.xforce.ibmcloud.com/vulnerabilities/15726 •
CVSS: 2.1EPSS: 0%CPEs: 2EXPL: 0CVE-2003-0618
https://notcve.org/view.php?id=CVE-2003-0618
Multiple vulnerabilities in suidperl 5.6.1 and earlier allow a local user to obtain sensitive information about files for which the user does not have appropriate permissions. Múltiples vulnerabilidades en suidperl 5.6.1 y anteriores permiten a un usuario local obtener información sensible sobre ficheros para los que el usuario no tiene permisos adecuados. • http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=203426 http://www.debian.org/security/2004/dsa-431 http://www.securityfocus.com/bid/9543 https://exchange.xforce.ibmcloud.com/vulnerabilities/15012 •