CVE-2004-0362: Buffer Overflow

First published: Tue Mar 23 2004(Updated: )

Multiple stack-based buffer overflows in the ICQ parsing routines of the ISS Protocol Analysis Module (PAM) component, as used in various RealSecure, Proventia, and BlackICE products, allow remote attackers to execute arbitrary code via a SRV_MULTI response containing a SRV_USER_ONLINE response packet and a SRV_META_USER response packet with long (1) nickname, (2) firstname, (3) lastname, or (4) email address fields, as exploited by the Witty worm.

Credit: cve@mitre.org

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/references
• agent/type
• agent/softwarecombine
• collector/mitre-cve
• source/MITRE
• agent/weakness
• agent/last-modified-date
• agent/severity
• agent/author
• agent/remedy
• agent/first-publish-date
• agent/event
• agent/description
• agent/source
• agent/tags
• collector/nvd-index
• agent/software-canonical-lookup-request
• collector/nvd-historical
• vendor/iss
• canonical/ibm iss blackice agent server
• version/ibm iss blackice agent server/3.6ebz
• version/ibm iss blackice agent server/3.6eca
• version/ibm iss blackice agent server/3.6ecb
• version/ibm iss blackice agent server/3.6ecc
• version/ibm iss blackice agent server/3.6ecd
• version/ibm iss blackice agent server/3.6ece
• version/ibm iss blackice agent server/3.6ecf
• canonical/ibm iss blackice pc protection
• version/ibm iss blackice pc protection/3.6cbz
• version/ibm iss blackice pc protection/3.6cca
• version/ibm iss blackice pc protection/3.6ccb
• version/ibm iss blackice pc protection/3.6ccc
• version/ibm iss blackice pc protection/3.6ccd
• version/ibm iss blackice pc protection/3.6cce
• version/ibm iss blackice pc protection/3.6ccf
• canonical/iss blackice server protection
• version/iss blackice server protection/3.6cbz
• version/iss blackice server protection/3.6cca
• version/iss blackice server protection/3.6ccb
• version/iss blackice server protection/3.6ccc
• version/iss blackice server protection/3.6ccd
• version/iss blackice server protection/3.6cce
• version/iss blackice server protection/3.6ccf
• canonical/iss realsecure desktop
• version/iss realsecure desktop/3.6ebz
• version/iss realsecure desktop/3.6eca
• version/iss realsecure desktop/3.6ecb
• version/iss realsecure desktop/3.6ecd
• version/iss realsecure desktop/3.6ece
• version/iss realsecure desktop/3.6ecf
• version/iss realsecure desktop/7.0eba
• version/iss realsecure desktop/7.0ebf
• version/iss realsecure desktop/7.0ebg
• version/iss realsecure desktop/7.0ebh
• version/iss realsecure desktop/7.0ebj
• version/iss realsecure desktop/7.0ebk
• version/iss realsecure desktop/7.0ebl
• canonical/iss realsecure
• version/iss realsecure/3.6ebz
• version/iss realsecure/3.6eca
• version/iss realsecure/3.6ecb
• version/iss realsecure/3.6ecc
• version/iss realsecure/3.6ecd
• version/iss realsecure/3.6ece
• version/iss realsecure/3.6ecf
• version/iss realsecure/7.0
• version/iss realsecure/7.0-xpu_20.11
• version/iss realsecure/7.0-xpu_22.10
• version/iss realsecure/7.0-xpu_22.4
• version/iss realsecure/7.0-xpu_22.9
• canonical/iss realsecure sentry
• version/iss realsecure sentry/3.6ebz
• version/iss realsecure sentry/3.6eca
• version/iss realsecure sentry/3.6ecb
• version/iss realsecure sentry/3.6ecc
• version/iss realsecure sentry/3.6ecd
• version/iss realsecure sentry/3.6ece
• version/iss realsecure sentry/3.6ecf
• version/iss realsecure/6.0
• version/iss realsecure/6.0.1
• version/iss realsecure/6.0.1_win_sr1.1
• version/iss realsecure/6.5
• version/iss realsecure/6.5-sr3.2
• version/iss realsecure/6.5-sr3.3
• version/iss realsecure/6.5_win_sr3.1
• version/iss realsecure/6.5_win_sr3.4
• version/iss realsecure/6.5_win_sr3.5
• version/iss realsecure/6.5_win_sr3.6
• version/iss realsecure/6.5_win_sr3.7
• version/iss realsecure/6.5_win_sr3.8
• version/iss realsecure/6.5_win_sr3.9
• version/iss realsecure/6.5_win_sr3.10
• version/iss realsecure/7.0-xpu22.1
• version/iss realsecure/7.0-xpu22.10
• version/iss realsecure/7.0-xpu22.11
• version/iss realsecure/7.0-xpu22.2
• version/iss realsecure/7.0-xpu22.3
• version/iss realsecure/7.0-xpu22.4
• version/iss realsecure/7.0-xpu22.5
• version/iss realsecure/7.0-xpu22.6
• version/iss realsecure/7.0-xpu22.7
• version/iss realsecure/7.0-xpu22.8
• version/iss realsecure/7.0-xpu22.9
• canonical/ibm proventia a series xpu
• version/ibm proventia a series xpu/20.11
• version/ibm proventia a series xpu/22.1
• version/ibm proventia a series xpu/22.2
• version/ibm proventia a series xpu/22.3
• version/ibm proventia a series xpu/22.4
• version/ibm proventia a series xpu/22.5
• version/ibm proventia a series xpu/22.6
• version/ibm proventia a series xpu/22.7
• version/ibm proventia a series xpu/22.8
• version/ibm proventia a series xpu/22.9
• version/ibm proventia a series xpu/22.10
• canonical/ibm proventia g series xpu
• version/ibm proventia g series xpu/22.1
• version/ibm proventia g series xpu/22.2
• version/ibm proventia g series xpu/22.3
• version/ibm proventia g series xpu/22.4
• version/ibm proventia g series xpu/22.5
• version/ibm proventia g series xpu/22.6
• version/ibm proventia g series xpu/22.7
• version/ibm proventia g series xpu/22.8
• version/ibm proventia g series xpu/22.9
• version/ibm proventia g series xpu/22.10
• version/ibm proventia g series xpu/22.11
• canonical/ibm proventia m series xpu
• version/ibm proventia m series xpu/1.1
• version/ibm proventia m series xpu/1.2
• version/ibm proventia m series xpu/1.3
• version/ibm proventia m series xpu/1.4
• version/ibm proventia m series xpu/1.5
• version/ibm proventia m series xpu/1.6
• version/ibm proventia m series xpu/1.7
• version/ibm proventia m series xpu/1.8
• version/ibm proventia m series xpu/1.9