Lucene search

MitreCVE-2004-0453

HistoryAug 06, 2004 - 4:00 a.m.

CVE-2004-0453

2004-08-0604:00:00

mitre

web.nvd.nist.gov

vice

emulator

vulnerability

format string

denial of service

code execution

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

High

EPSS

0.001

Percentile

20.3%

JSON

Format string vulnerability in the monitor “memory dump” command in VICE 1.6 to 1.14 allows local users to cause a denial of service (emulator crash) and possibly execute arbitrary code via format string specifiers in an output string.

Affected configurations

Nvd

Node

viceviceMatch1.6

viceviceMatch1.13

viceviceMatch1.14

VendorProductVersionCPE
vicevice1.6cpe:2.3:a:vice:vice:1.6:*:*:*:*:*:*:*
vicevice1.13cpe:2.3:a:vice:vice:1.13:*:*:*:*:*:*:*
vicevice1.14cpe:2.3:a:vice:vice:1.14:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
vice	vice	1.6	cpe:2.3:a:vice:vice:1.6:::::::*
vice	vice	1.13	cpe:2.3:a:vice:vice:1.13:::::::*
vice	vice	1.14	cpe:2.3:a:vice:vice:1.14:::::::*

References

marc.info/?l=bugtraq&m=108723630730487&w=2

www.securityfocus.com/bid/10543

exchange.xforce.ibmcloud.com/vulnerabilities/16404

CVSS2

7.2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

AI Score

7.4

Confidence

High

EPSS

0.001

Percentile

20.3%

JSON

Related for CVE-2004-0453