[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

250770

 
 

909

 
 

196157

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2004-0179Date: (C)2004-06-01   (M)2023-12-22


Multiple format string vulnerabilities in (1) neon 0.24.4 and earlier, and other products that use neon including (2) Cadaver, (3) Subversion, and (4) OpenOffice, allow remote malicious WebDAV servers to execute arbitrary code.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 6.8
Exploit Score: 8.6
Impact Score: 6.4
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: MEDIUM
Authentication: NONE
Confidentiality: PARTIAL
Integrity: PARTIAL
Availability: PARTIAL
  
Reference:
BID-10136
SECUNIA-11363
20040404-01-U
http://marc.info/?l=bugtraq&m=108213873203477&w=2
http://marc.info/?l=bugtraq&m=108214147022626&w=2
OSVDB-5365
DSA-487
FEDORA-2004-1552
GLSA-200405-01
GLSA-200405-04
MDKSA-2004:032
RHSA-2004:157
RHSA-2004:158
RHSA-2004:159
RHSA-2004:160
SuSE-SA:2004:008
SuSE-SA:2004:009
oval:org.mitre.oval:def:1065
oval:org.mitre.oval:def:10913

CPE    4
cpe:/a:apache:subversion
cpe:/a:webdav:cadaver
cpe:/o:debian:debian_linux:3.0
cpe:/a:webdav:neon
...
CWE    1
CWE-134

© SecPod Technologies