CVE-2004-0179
First published: Fri Apr 16 2004(Updated: )
Multiple format string vulnerabilities in (1) neon 0.24.4 and earlier, and other products that use neon including (2) Cadaver, (3) Subversion, and (4) OpenOffice, allow remote malicious WebDAV servers to execute arbitrary code.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Debian Debian Linux | =3.0 | |
| Webdav Neon | >=0.19.0<0.24.5 | |
| Apache OpenOffice | ||
| Apache Subversion | ||
| Webdav Cadaver |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.debian.org/security/2004/dsa-487
- http://www.redhat.com/support/errata/RHSA-2004-157.html
- https://bugzilla.fedora.us/show_bug.cgi?id=1552
- http://www.redhat.com/support/errata/RHSA-2004-158.html
- http://www.redhat.com/support/errata/RHSA-2004-159.html
- http://www.redhat.com/support/errata/RHSA-2004-160.html
- http://security.gentoo.org/glsa/glsa-200405-01.xml
- http://security.gentoo.org/glsa/glsa-200405-04.xml
- http://lists.suse.com/archive/suse-security-announce/2004-Apr/0003.html
- http://lists.suse.com/archive/suse-security-announce/2004-Apr/0002.html
- http://www.mandriva.com/security/advisories?name=MDKSA-2004:032
- http://www.securityfocus.com/bid/10136
- http://www.osvdb.org/5365
- http://secunia.com/advisories/11363
- http://marc.info/?l=bugtraq&m=108214147022626&w=2
- http://marc.info/?l=bugtraq&m=108213873203477&w=2
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10913
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1065
- collector/nvd-historical
- agent/references
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/severity
- agent/weakness
- agent/author
- agent/tags
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/debian
- canonical/debian debian linux
- version/debian debian linux/3.0
- vendor/webdav
- canonical/webdav neon
- version/webdav neon/0.19.0
- vendor/apache
- canonical/apache openoffice
- canonical/apache subversion
- canonical/webdav cadaver