CVE-2004-0179

Multiple format string vulnerabilities in (1) neon 0.24.4 and earlier, and other products that use neon including (2) Cadaver, (3) Subversion, and (4) OpenOffice, allow remote malicious WebDAV servers to execute arbitrary code.

CVSS v2.0 6.8 MEDIUM

6.8^/10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www.debian.org/security/2004/dsa-487	Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2004-157.html	Third Party Advisory
ftp://patches.sgi.com/support/free/security/advisories/20040404-01-U.asc	Broken Link
https://bugzilla.fedora.us/show_bug.cgi?id=1552	Broken Link
http://www.redhat.com/support/errata/RHSA-2004-158.html	Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2004-159.html	Third Party Advisory
http://www.redhat.com/support/errata/RHSA-2004-160.html	Third Party Advisory
http://security.gentoo.org/glsa/glsa-200405-01.xml	Third Party Advisory
http://security.gentoo.org/glsa/glsa-200405-04.xml	Third Party Advisory
http://lists.suse.com/archive/suse-security-announce/2004-Apr/0003.html	Broken Link
http://lists.suse.com/archive/suse-security-announce/2004-Apr/0002.html	Broken Link
http://www.mandriva.com/security/advisories?name=MDKSA-2004:032	Third Party Advisory
http://www.securityfocus.com/bid/10136	Third Party Advisory VDB Entry
http://www.osvdb.org/5365	Broken Link
http://secunia.com/advisories/11363	Third Party Advisory
http://marc.info/?l=bugtraq&m=108214147022626&w=2	Issue Tracking Third Party Advisory
http://marc.info/?l=bugtraq&m=108213873203477&w=2	Issue Tracking Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10913	Third Party Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1065	Third Party Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:a:webdav:neon:*:*:*:*:*:*:*:*

OR	cpe:2.3:a:apache:openoffice::::::::
	cpe:2.3:a:apache:subversion::::::::
	cpe:2.3:a:webdav:cadaver::::::::

Configuration 2 (hide)

cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:*

Information

Published : 2004-05-31 21:00

Updated : 2020-10-13 09:52

NVD link : CVE-2004-0179

Mitre link : CVE-2004-0179

JSON object : View

CWE

CWE-134

Use of Externally-Controlled Format String

Products Affected

webdav

neon
cadaver

apache

subversion
openoffice

debian

debian_linux

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.debian.org/security/2004/dsa-487", "name": "DSA-487", "tags": ["Third Party Advisory"], "refsource": "DEBIAN"}, {"url": "http://www.redhat.com/support/errata/RHSA-2004-157.html", "name": "RHSA-2004:157", "tags": ["Third Party Advisory"], "refsource": "REDHAT"}, {"url": "ftp://patches.sgi.com/support/free/security/advisories/20040404-01-U.asc", "name": "20040404-01-U", "tags": ["Broken Link"], "refsource": "SGI"}, {"url": "https://bugzilla.fedora.us/show_bug.cgi?id=1552", "name": "FEDORA-2004-1552", "tags": ["Broken Link"], "refsource": "FEDORA"}, {"url": "http://www.redhat.com/support/errata/RHSA-2004-158.html", "name": "RHSA-2004:158", "tags": ["Third Party Advisory"], "refsource": "REDHAT"}, {"url": "http://www.redhat.com/support/errata/RHSA-2004-159.html", "name": "RHSA-2004:159", "tags": ["Third Party Advisory"], "refsource": "REDHAT"}, {"url": "http://www.redhat.com/support/errata/RHSA-2004-160.html", "name": "RHSA-2004:160", "tags": ["Third Party Advisory"], "refsource": "REDHAT"}, {"url": "http://security.gentoo.org/glsa/glsa-200405-01.xml", "name": "GLSA-200405-01", "tags": ["Third Party Advisory"], "refsource": "GENTOO"}, {"url": "http://security.gentoo.org/glsa/glsa-200405-04.xml", "name": "GLSA-200405-04", "tags": ["Third Party Advisory"], "refsource": "GENTOO"}, {"url": "http://lists.suse.com/archive/suse-security-announce/2004-Apr/0003.html", "name": "SuSE-SA:2004:008", "tags": ["Broken Link"], "refsource": "SUSE"}, {"url": "http://lists.suse.com/archive/suse-security-announce/2004-Apr/0002.html", "name": "SuSE-SA:2004:009", "tags": ["Broken Link"], "refsource": "SUSE"}, {"url": "http://www.mandriva.com/security/advisories?name=MDKSA-2004:032", "name": "MDKSA-2004:032", "tags": ["Third Party Advisory"], "refsource": "MANDRAKE"}, {"url": "http://www.securityfocus.com/bid/10136", "name": "10136", "tags": ["Third Party Advisory", "VDB Entry"], "refsource": "BID"}, {"url": "http://www.osvdb.org/5365", "name": "5365", "tags": ["Broken Link"], "refsource": "OSVDB"}, {"url": "http://secunia.com/advisories/11363", "name": "11363", "tags": ["Third Party Advisory"], "refsource": "SECUNIA"}, {"url": "http://marc.info/?l=bugtraq&m=108214147022626&w=2", "name": "20040416 void.at - neon format string bugs", "tags": ["Issue Tracking", "Third Party Advisory"], "refsource": "BUGTRAQ"}, {"url": "http://marc.info/?l=bugtraq&m=108213873203477&w=2", "name": "20040416 [OpenPKG-SA-2004.016] OpenPKG Security Advisory (neon)", "tags": ["Issue Tracking", "Third Party Advisory"], "refsource": "BUGTRAQ"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10913", "name": "oval:org.mitre.oval:def:10913", "tags": ["Third Party Advisory"], "refsource": "OVAL"}, {"url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1065", "name": "oval:org.mitre.oval:def:1065", "tags": ["Third Party Advisory"], "refsource": "OVAL"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Multiple format string vulnerabilities in (1) neon 0.24.4 and earlier, and other products that use neon including (2) Cadaver, (3) Subversion, and (4) OpenOffice, allow remote malicious WebDAV servers to execute arbitrary code."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-134"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2004-0179", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "acInsufInfo": false, "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}}, "publishedDate": "2004-06-01T04:00Z", "configurations": {"nodes": [{"children": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:webdav:neon:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndExcluding": "0.24.5", "versionStartIncluding": "0.19.0"}]}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:apache:openoffice:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:a:apache:subversion:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}, {"cpe23Uri": "cpe:2.3:a:webdav:cadaver:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": false}]}], "operator": "AND", "cpe_match": []}, {"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:o:debian:debian_linux:3.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2020-10-13T16:52Z"}

6.8 /10