CVE-2004-1494

Опубликовано: 31 дек. 2004

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Buffer overflow in the Screen Fetch option in XDICT 2002 through 2005 allows remote attackers to cause a denial of service ( CPU consumption or application exit) and possibly execute arbitrary code via a long string.

Ссылки

http://lists.grok.org.uk/pipermail/full-disclosure/2004-November/028241.html
Exploit
Vendor Advisory
http://marc.info/?l=bugtraq&m=109933696831725&w=2
http://secway.org/Advisory/Ad20041026EN.txt
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/17929
http://lists.grok.org.uk/pipermail/full-disclosure/2004-November/028241.html
Exploit
Vendor Advisory
http://marc.info/?l=bugtraq&m=109933696831725&w=2
http://secway.org/Advisory/Ad20041026EN.txt
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/17929

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:kingsoft:xdict:2002:*:*:*:*:*:*:*

cpe:2.3:a:kingsoft:xdict:2003:*:*:*:*:*:*:*

cpe:2.3:a:kingsoft:xdict:2004:*:*:*:*:*:*:*

cpe:2.3:a:kingsoft:xdict:2005:*:*:*:*:*:*:*

EPSS

Процентиль: 84%

0.02237

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-cx7h-7g3p-qrjv

github

почти 4 года назад