First published: Tue Mar 23 2004(Updated: )
Multiple stack-based buffer overflows in the ICQ parsing routines of the ISS Protocol Analysis Module (PAM) component, as used in various RealSecure, Proventia, and BlackICE products, allow remote attackers to execute arbitrary code via a SRV_MULTI response containing a SRV_USER_ONLINE response packet and a SRV_META_USER response packet with long (1) nickname, (2) firstname, (3) lastname, or (4) email address fields, as exploited by the Witty worm.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
ISS RealSecure Server Sensor | =7.0-xpu22.4 | |
ISS RealSecure Server Sensor | =6.5-sr3.2 | |
ISS RealSecure Network Sensor | =7.0-xpu_20.11 | |
Iss Realsecure Desktop | =7.0ebg | |
Iss Realsecure Guard | =3.6ecb | |
Iss Realsecure Desktop | =7.0ebh | |
ISS RealSecure Server Sensor | =7.0-xpu22.6 | |
ISS BlackICE PC Protection | =3.6ccf | |
Iss Realsecure Sentry | =3.6ece | |
Iss Realsecure Desktop | =3.6ebz | |
ISS BlackICE PC Protection | =3.6ccb | |
Iss Realsecure Sentry | =3.6ecf | |
ISS RealSecure Server Sensor | =6.5_win_sr3.4 | |
Iss Realsecure Guard | =3.6ece | |
ISS RealSecure Server Sensor | =6.0 | |
Iss Realsecure Desktop | =3.6ecd | |
Iss Realsecure Guard | =3.6eca | |
ISS BlackICE PC Protection | =3.6cbz | |
ISS RealSecure Network Sensor | =7.0-xpu_22.10 | |
ISS BlackICE PC Protection | =3.6cce | |
Iss Realsecure Desktop | =7.0ebj | |
ISS RealSecure Server Sensor | =7.0-xpu22.9 | |
ISS RealSecure Server Sensor | =6.5 | |
ISS RealSecure Server Sensor | =6.5_win_sr3.9 | |
Iss Realsecure Guard | =3.6ebz | |
ISS BlackICE PC Protection | =3.6cca | |
Iss Blackice Agent Server | =3.6ecc | |
ISS RealSecure Server Sensor | =7.0-xpu22.7 | |
Iss Realsecure Sentry | =3.6ebz | |
Iss Realsecure Desktop | =3.6ecf | |
Iss Realsecure Desktop | =3.6ecb | |
Iss Realsecure Guard | =3.6ecd | |
Iss Realsecure Desktop | =7.0eba | |
ISS RealSecure Server Sensor | =7.0-xpu22.2 | |
Iss Realsecure Sentry | =3.6ecc | |
ISS RealSecure Server Sensor | =6.5_win_sr3.5 | |
Iss Blackice Server Protection | =3.6ccb | |
ISS RealSecure Network Sensor | =7.0-xpu_22.9 | |
Iss Blackice Agent Server | =3.6ecb | |
ISS RealSecure Server Sensor | =6.5_win_sr3.7 | |
Iss Realsecure Desktop | =7.0ebk | |
ISS BlackICE PC Protection | =3.6ccd | |
ISS RealSecure Server Sensor | =6.0.1_win_sr1.1 | |
Iss Realsecure Desktop | =7.0ebl | |
Iss Blackice Agent Server | =3.6ebz | |
ISS RealSecure Server Sensor | =6.5_win_sr3.6 | |
Iss Blackice Agent Server | =3.6ece | |
ISS RealSecure Server Sensor | =6.5-sr3.3 | |
Iss Blackice Server Protection | =3.6cce | |
ISS BlackICE PC Protection | =3.6ccc | |
ISS RealSecure Network Sensor | =7.0-xpu_22.4 | |
ISS RealSecure Server Sensor | =7.0-xpu22.5 | |
Iss Blackice Server Protection | =3.6ccd | |
Iss Realsecure Guard | =3.6ecf | |
Iss Realsecure Desktop | =7.0ebf | |
Iss Blackice Server Protection | =3.6cca | |
Iss Realsecure Desktop | =3.6ece | |
Iss Blackice Agent Server | =3.6ecd | |
Iss Blackice Agent Server | =3.6eca | |
Iss Realsecure Guard | =3.6ecc | |
ISS RealSecure Server Sensor | =6.5_win_sr3.1 | |
ISS RealSecure Server Sensor | =7.0-xpu22.3 | |
ISS RealSecure Server Sensor | =7.0-xpu22.10 | |
Iss Realsecure Sentry | =3.6ecd | |
Iss Blackice Agent Server | =3.6ecf | |
ISS RealSecure Server Sensor | =7.0-xpu22.1 | |
ISS RealSecure Server Sensor | =6.5_win_sr3.10 | |
Iss Realsecure Sentry | =3.6eca | |
ISS RealSecure Server Sensor | =6.0.1 | |
Iss Blackice Server Protection | =3.6ccc | |
Iss Blackice Server Protection | =3.6cbz | |
Iss Realsecure Sentry | =3.6ecb | |
Iss Realsecure Desktop | =3.6eca | |
ISS RealSecure Server Sensor | =7.0-xpu22.11 | |
ISS RealSecure Server Sensor | =7.0-xpu22.8 | |
Iss Blackice Server Protection | =3.6ccf | |
ISS RealSecure Network Sensor | =7.0 | |
ISS RealSecure Server Sensor | =6.5_win_sr3.8 | |
Iss Proventia M Series Xpu | =1.5 | |
Iss Proventia A Series Xpu | =22.2 | |
Iss Proventia G Series Xpu | =22.5 | |
Iss Proventia M Series Xpu | =1.1 | |
Iss Proventia M Series Xpu | =1.8 | |
Iss Proventia G Series Xpu | =22.11 | |
Iss Proventia A Series Xpu | =22.9 | |
Iss Proventia M Series Xpu | =1.6 | |
Iss Proventia A Series Xpu | =22.3 | |
Iss Proventia A Series Xpu | =22.7 | |
Iss Proventia G Series Xpu | =22.4 | |
Iss Proventia G Series Xpu | =22.7 | |
Iss Proventia A Series Xpu | =22.8 | |
Iss Proventia G Series Xpu | =22.2 | |
Iss Proventia A Series Xpu | =22.1 | |
Iss Proventia A Series Xpu | =22.6 | |
Iss Proventia G Series Xpu | =22.8 | |
Iss Proventia A Series Xpu | =22.4 | |
Iss Proventia G Series Xpu | =22.3 | |
Iss Proventia M Series Xpu | =1.3 | |
Iss Proventia A Series Xpu | =20.11 | |
Iss Proventia G Series Xpu | =22.6 | |
Iss Proventia A Series Xpu | =22.10 | |
Iss Proventia A Series Xpu | =22.5 | |
Iss Proventia G Series Xpu | =22.1 | |
Iss Proventia M Series Xpu | =1.7 | |
Iss Proventia M Series Xpu | =1.2 | |
Iss Proventia G Series Xpu | =22.9 | |
Iss Proventia M Series Xpu | =1.9 | |
Iss Proventia G Series Xpu | =22.10 | |
Iss Proventia M Series Xpu | =1.4 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.