Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1288

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-1288
Last Modified 10 Sep 2008 03:29:44
Published 10 Jan 2005 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-1288

Summary

Buffer overflow in the parse_html function in o3read.c for o3read 0.0.3 allows remote attackers to execute arbitrary code via a crafted SXW file.

Vulnerable Systems

Application

  • Siag O3read .3


References

XF - o3read-parsehtml-bo(18547)

GENTOO - GLSA-200501-20

MISC - http://tigger.uic.edu/~jlongs2/holes/o3read.txt


Last Updated: 27 May 2016 10:38:58