Lucene search

[email protected]CVE-2004-1471

HistoryFeb 13, 2005 - 5:00 a.m.

CVE-2004-1471

2005-02-1305:00:00

[email protected]

web.nvd.nist.gov

cve

2004

1471

vulnerability

format string

cvs

denial of service

code execution

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:S/C:C/I:C/A:C

7.7 High

AI Score

Confidence

High

0.014 Low

EPSS

Percentile

86.3%

JSON

Format string vulnerability in wrapper.c in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16 allows remote attackers with CVSROOT commit access to cause a denial of service (application crash) and possibly execute arbitrary code via format string specifiers in a wrapper line.

Affected configurations

NVD

Node

cvscvsMatch1.10.7

cvscvsMatch1.10.8

cvscvsMatch1.11

cvscvsMatch1.11.1

cvscvsMatch1.11.1_p1

cvscvsMatch1.11.2

cvscvsMatch1.11.3

cvscvsMatch1.11.4

cvscvsMatch1.11.5

cvscvsMatch1.11.6

cvscvsMatch1.11.10

cvscvsMatch1.11.11

cvscvsMatch1.11.14

cvscvsMatch1.11.15

cvscvsMatch1.11.16

cvscvsMatch1.12.1

cvscvsMatch1.12.2

cvscvsMatch1.12.5

cvscvsMatch1.12.7

cvscvsMatch1.12.8

openpkgopenpkgMatch1.3

openpkgopenpkgMatch2.0

openpkgopenpkgMatchcurrent

sgipropackMatch2.4

sgipropackMatch3.0

Node

freebsdfreebsdMatch1.1.5.1

freebsdfreebsdMatch2.0

freebsdfreebsdMatch2.0.5

freebsdfreebsdMatch2.1.0

freebsdfreebsdMatch2.1.5

freebsdfreebsdMatch2.1.6

freebsdfreebsdMatch2.1.6.1

freebsdfreebsdMatch2.1.7.1

freebsdfreebsdMatch2.2

freebsdfreebsdMatch2.2.2

freebsdfreebsdMatch2.2.3

freebsdfreebsdMatch2.2.4

freebsdfreebsdMatch2.2.5

freebsdfreebsdMatch2.2.6

freebsdfreebsdMatch2.2.8

freebsdfreebsdMatch3.0

freebsdfreebsdMatch3.0releng

freebsdfreebsdMatch3.1

freebsdfreebsdMatch3.2

freebsdfreebsdMatch3.3

freebsdfreebsdMatch3.4

freebsdfreebsdMatch3.5

freebsdfreebsdMatch3.5stable

freebsdfreebsdMatch3.5.1

freebsdfreebsdMatch3.5.1release

freebsdfreebsdMatch3.5.1stable

freebsdfreebsdMatch4.0

freebsdfreebsdMatch4.0alpha

freebsdfreebsdMatch4.0releng

freebsdfreebsdMatch4.1

freebsdfreebsdMatch4.1.1

freebsdfreebsdMatch4.1.1release

freebsdfreebsdMatch4.1.1stable

freebsdfreebsdMatch4.2

freebsdfreebsdMatch4.2stable

freebsdfreebsdMatch4.3

freebsdfreebsdMatch4.3release

freebsdfreebsdMatch4.3release_p38

freebsdfreebsdMatch4.3releng

freebsdfreebsdMatch4.3stable

freebsdfreebsdMatch4.4

freebsdfreebsdMatch4.4release_p42

freebsdfreebsdMatch4.4releng

freebsdfreebsdMatch4.4stable

freebsdfreebsdMatch4.5

freebsdfreebsdMatch4.5release

freebsdfreebsdMatch4.5release_p32

freebsdfreebsdMatch4.5releng

freebsdfreebsdMatch4.5stable

freebsdfreebsdMatch4.6

freebsdfreebsdMatch4.6release

freebsdfreebsdMatch4.6release_p20

freebsdfreebsdMatch4.6releng

freebsdfreebsdMatch4.6stable

freebsdfreebsdMatch4.6.2

freebsdfreebsdMatch4.7

freebsdfreebsdMatch4.7release

freebsdfreebsdMatch4.7release_p17

freebsdfreebsdMatch4.7releng

freebsdfreebsdMatch4.7stable

freebsdfreebsdMatch4.8

freebsdfreebsdMatch4.8pre-release

freebsdfreebsdMatch4.8release_p6

freebsdfreebsdMatch4.8releng

freebsdfreebsdMatch4.9

freebsdfreebsdMatch4.9pre-release

freebsdfreebsdMatch4.9releng

freebsdfreebsdMatch4.10

freebsdfreebsdMatch4.10release

freebsdfreebsdMatch4.10releng

freebsdfreebsdMatch5.0

freebsdfreebsdMatch5.0alpha

freebsdfreebsdMatch5.0release_p14

freebsdfreebsdMatch5.0releng

freebsdfreebsdMatch5.1

freebsdfreebsdMatch5.1alpha

freebsdfreebsdMatch5.1release

freebsdfreebsdMatch5.1release_p5

freebsdfreebsdMatch5.1releng

freebsdfreebsdMatch5.2

freebsdfreebsdMatch5.2.1release

freebsdfreebsdMatch5.2.1releng

gentoolinuxMatch1.4

openbsdopenbsdMatch3.4

openbsdopenbsdMatch3.5

openbsdopenbsdMatchcurrent

CPENameOperatorVersion
cvs:cvscvseq1.10.7
cvs:cvscvseq1.10.8
cvs:cvscvseq1.11
cvs:cvscvseq1.11.1
cvs:cvscvseq1.11.1_p1
cvs:cvscvseq1.11.2
cvs:cvscvseq1.11.3
cvs:cvscvseq1.11.4
cvs:cvscvseq1.11.5
cvs:cvscvseq1.11.6

CPE	Name	Operator	Version
cvs:cvs	cvs	eq	1.10.7
cvs:cvs	cvs	eq	1.10.8
cvs:cvs	cvs	eq	1.11
cvs:cvs	cvs	eq	1.11.1
cvs:cvs	cvs	eq	1.11.1_p1
cvs:cvs	cvs	eq	1.11.2
cvs:cvs	cvs	eq	1.11.3
cvs:cvs	cvs	eq	1.11.4
cvs:cvs	cvs	eq	1.11.5
cvs:cvs	cvs	eq	1.11.6

Rows per page:

1-10 of 251

References

ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-04:14.cvs.asc

lists.grok.org.uk/pipermail/full-disclosure/2004-June/022441.html

security.e-matters.de/advisories/092004.html

www.securityfocus.com/bid/10499

exchange.xforce.ibmcloud.com/vulnerabilities/16365

7.1 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:H/Au:S/C:C/I:C/A:C

7.7 High

AI Score

Confidence

High

0.014 Low

EPSS

Percentile

86.3%

JSON

Related for CVE-2004-1471

nvd1 debiancve1 cvelist1 nessus3