Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveMitreCVE-2004-1316
HistoryDec 31, 2004 - 5:00 a.m.

CVE-2004-1316

2004-12-3105:00:00
mitre
web.nvd.nist.gov
35
security
vulnerability
buffer overflow
denial of service
mozilla
cve-2004-1316
nvd

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.8

Confidence

Low

EPSS

0.058

Percentile

93.5%

JSON

Heap-based buffer overflow in MSG_UnEscapeSearchUrl in nsNNTPProtocol.cpp for Mozilla 1.7.3 and earlier allows remote attackers to cause a denial of service (application crash) via an NNTP URL (news:) with a trailing '' (backslash) character, which prevents a string from being NULL terminated.

Affected configurations

Nvd
Node
mozillamozilla
OR
mozillamozillaMatch1.3
OR
mozillamozillaMatch1.4
OR
mozillamozillaMatch1.4alpha
OR
mozillamozillaMatch1.4.1
OR
mozillamozillaMatch1.5
OR
mozillamozillaMatch1.5alpha
OR
mozillamozillaMatch1.5rc1
OR
mozillamozillaMatch1.5rc2
OR
mozillamozillaMatch1.5.1
OR
mozillamozillaMatch1.6
OR
mozillamozillaMatch1.6alpha
OR
mozillamozillaMatch1.6beta
OR
mozillamozillaMatch1.7
OR
mozillamozillaMatch1.7alpha
OR
mozillamozillaMatch1.7beta
OR
mozillamozillaMatch1.7rc1
OR
mozillamozillaMatch1.7rc2
OR
mozillamozillaMatch1.7rc3
OR
mozillamozillaMatch1.7.1
OR
mozillamozillaMatch1.7.2
OR
mozillamozillaMatch1.7.3
VendorProductVersionCPE
mozillamozilla*cpe:2.3:a:mozilla:mozilla:*:*:*:*:*:*:*:*
mozillamozilla1.3cpe:2.3:a:mozilla:mozilla:1.3:*:*:*:*:*:*:*
mozillamozilla1.4cpe:2.3:a:mozilla:mozilla:1.4:*:*:*:*:*:*:*
mozillamozilla1.4cpe:2.3:a:mozilla:mozilla:1.4:alpha:*:*:*:*:*:*
mozillamozilla1.4.1cpe:2.3:a:mozilla:mozilla:1.4.1:*:*:*:*:*:*:*
mozillamozilla1.5cpe:2.3:a:mozilla:mozilla:1.5:*:*:*:*:*:*:*
mozillamozilla1.5cpe:2.3:a:mozilla:mozilla:1.5:alpha:*:*:*:*:*:*
mozillamozilla1.5cpe:2.3:a:mozilla:mozilla:1.5:rc1:*:*:*:*:*:*
mozillamozilla1.5cpe:2.3:a:mozilla:mozilla:1.5:rc2:*:*:*:*:*:*
mozillamozilla1.5.1cpe:2.3:a:mozilla:mozilla:1.5.1:*:*:*:*:*:*:*
Rows per page:
1-10 of 221

Related

nessus 3
redhat 1
openvas 4
ubuntucve 1
nvd 1
checkpoint_advisories 1
freebsd 1
cvelist 1
suse 2
nessus
nessus
FreeBSD : mozilla -- heap overflow in NNTP handler (3fbf9db2-658b-11d9-abad-000a95bc6fae)
2005-07-13 00:00:00
RHEL 2.1 / 3 : mozilla (RHSA-2005:038)
2005-01-13 00:00:00
Mozilla nsNNTPProtocol.cpp NNTP news:// URI Handling Overflow DoS
2005-01-02 00:00:00
redhat
redhat
(RHSA-2005:038) mozilla security update
2005-01-13 00:00:00
openvas
openvas
mozilla -- heap overflow in NNTP handler
2008-09-04 00:00:00
mozilla -- heap overflow in NNTP handler
2008-09-04 00:00:00
HP-UX Update for Mozilla remote HPSBUX01133
2009-05-05 00:00:00
ubuntucve
ubuntucve
CVE-2004-1316
2004-12-29 00:00:00
nvd
nvd
CVE-2004-1316
2004-12-29 05:00:00
checkpoint_advisories
checkpoint_advisories
Mozilla NNTP URL Handling Buffer Overflow (CVE-2004-1316)
2009-11-08 00:00:00
freebsd
freebsd
mozilla -- heap overflow in NNTP handler
2004-12-29 00:00:00
cvelist
cvelist
CVE-2004-1316
2004-12-31 05:00:00
suse
suse
remote code execution in MozillaThunderbird
2006-04-25 13:15:04
remote code execution in phpMyAdmin
2006-01-26 13:53:52

CVSS2

5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.8

Confidence

Low

EPSS

0.058

Percentile

93.5%

JSON
Related for CVE-2004-1316
nessus3redhat1openvas4ubuntucve1nvd1checkpoint_advisories1freebsd1cvelist1suse2