Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0564

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2003-0564
Last Modified 21 Aug 2010 12:16:18
Published 01 Dec 2003 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0564

Summary

Multiple vulnerabilities in multiple vendor implementations of the Secure/Multipurpose Internet Mail Extensions (S/MIME) protocol allow remote attackers to cause a denial of service and possibly execute arbitrary code via an S/MIME email message containing certain unexpected ASN.1 constructs, as demonstrated using the NISSC test suite.

Vulnerable Systems

Application

  • Hitachi Groupmax Mail - Security Option 6.0

  • Hitachi Pki Runtime Library


References

CERT-VN - VU#428230

MISC - http://www.uniras.gov.uk/vuls/2003/006489/smime.htm

REDHAT - RHSA-2004:110

HP - SSRT4722

XF - smime-asn1-bo(13603)

BID - 8981

REDHAT - RHSA-2004:112

SGI - 20040402-01-U

MANDRAKE - MDKSA-2004:021

FEDORA - FLSA:2089


Last Updated: 27 May 2016 10:37:58