Lucene search
MitreCVE-2004-0425HistoryAug 18, 2004 - 4:00 a.m.
CVE-2004-0425
2004-08-1804:00:00
mitre
web.nvd.nist.gov
34
cve-2004-0425
siteminder
affiliate agent
buffer overflow
remote code execution
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
8.1
Confidence
High
EPSS
0.035
Percentile
91.5%
Heap-based buffer overflow in SiteMinder Affiliate Agent 4.x allows remote attackers to execute arbitrary code via a large SMPROFILE cookie.
Affected configurations
Node
netegritysideminder_affiliate_agentMatch4.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| netegrity | sideminder_affiliate_agent | 4.0 | cpe:2.3:a:netegrity:sideminder_affiliate_agent:4.0:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2004-0425
2004-05-05 04:00:00
nvd
nvd
CVE-2004-0425
2004-08-18 04:00:00
securityvulns
securityvulns
[VulnWatch] Netegrity SiteMinder Affiliate Agent Cookie Overflow
2004-04-23 00:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
8.1
Confidence
High
EPSS
0.035
Percentile
91.5%
Related for CVE-2004-0425