Lucene search
Ubuntu.comUB:CVE-2004-0769HistoryAug 18, 2004 - 12:00 a.m.
CVE-2004-0769
2004-08-1800:00:00
ubuntu.com
ubuntu.com
15
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.128
Percentile
95.5%
Buffer overflow in LHA allows remote attackers to execute arbitrary code
via long pathnames in LHarc format 2 headers for a .LHZ archive, as
originally demonstrated using the “x” option but also exploitable through
“l” and “v”, and fixed in header.c, a different issue than CVE-2004-0771.
Related
cvelist
cvelist
nvd
nvd
cve
cve
ubuntucve
ubuntucve
CVE-2004-0771
2004-11-23 00:00:00
CVE-2004-0694
2011-02-04 00:00:00
openvas
openvas
FreeBSD Ports: lha
2008-09-04 00:00:00
Gentoo Security Advisory GLSA 200409-13 (lha)
2008-09-24 00:00:00
Gentoo Security Advisory GLSA 200409-13 (lha)
2008-09-24 00:00:00
nessus
nessus
Fedora Core 1 : lha-1.14i-12.2 (2004-294)
2004-09-09 00:00:00
FreeBSD : lha -- numerous vulnerabilities when extracting archives (273cc1a3-0d6b-11d9-8a8a-000c41e2cdad)
2009-04-23 00:00:00
RHEL 3 : lha (RHSA-2004:323)
2004-09-01 00:00:00
gentoo
gentoo
LHa: Multiple vulnerabilities
2004-09-08 00:00:00
redhat
redhat
(RHSA-2004:440) lha security update
2004-09-07 00:00:00
(RHSA-2004:323) lha security update
2004-09-01 00:00:00
freebsd
freebsd
lha -- numerous vulnerabilities when extracting archives
2004-05-17 00:00:00
exploitdb
exploitdb
LHA 1.x - 'extract_one' Multiple Buffer Overflow Vulnerabilities
2004-05-19 00:00:00
CVSS2
10
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
EPSS
0.128
Percentile
95.5%
Related for UB:CVE-2004-0769