Multiple format string vulnerabilities in (1) neon 0.24.4 and earlier, and other products that use neon including (2) Cadaver, (3) Subversion, and (4) OpenOffice, allow remote malicious WebDAV servers to execute arbitrary code.
References
Configurations
History
20 Nov 2024, 23:47
Type | Values Removed | Values Added |
---|---|---|
References | () ftp://patches.sgi.com/support/free/security/advisories/20040404-01-U.asc - Broken Link | |
References | () http://lists.suse.com/archive/suse-security-announce/2004-Apr/0002.html - Broken Link | |
References | () http://lists.suse.com/archive/suse-security-announce/2004-Apr/0003.html - Broken Link | |
References | () http://marc.info/?l=bugtraq&m=108213873203477&w=2 - Issue Tracking, Third Party Advisory | |
References | () http://marc.info/?l=bugtraq&m=108214147022626&w=2 - Issue Tracking, Third Party Advisory | |
References | () http://secunia.com/advisories/11363 - Third Party Advisory | |
References | () http://security.gentoo.org/glsa/glsa-200405-01.xml - Third Party Advisory | |
References | () http://security.gentoo.org/glsa/glsa-200405-04.xml - Third Party Advisory | |
References | () http://www.debian.org/security/2004/dsa-487 - Third Party Advisory | |
References | () http://www.mandriva.com/security/advisories?name=MDKSA-2004:032 - Third Party Advisory | |
References | () http://www.osvdb.org/5365 - Broken Link | |
References | () http://www.redhat.com/support/errata/RHSA-2004-157.html - Third Party Advisory | |
References | () http://www.redhat.com/support/errata/RHSA-2004-158.html - Third Party Advisory | |
References | () http://www.redhat.com/support/errata/RHSA-2004-159.html - Third Party Advisory | |
References | () http://www.redhat.com/support/errata/RHSA-2004-160.html - Third Party Advisory | |
References | () http://www.securityfocus.com/bid/10136 - Third Party Advisory, VDB Entry | |
References | () https://bugzilla.fedora.us/show_bug.cgi?id=1552 - Broken Link | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1065 - Third Party Advisory | |
References | () https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10913 - Third Party Advisory |
Information
Published : 2004-06-01 04:00
Updated : 2024-11-20 23:47
NVD link : CVE-2004-0179
Mitre link : CVE-2004-0179
CVE.ORG link : CVE-2004-0179
JSON object : View
Products Affected
webdav
- cadaver
- neon
apache
- subversion
- openoffice
debian
- debian_linux
CWE
CWE-134
Use of Externally-Controlled Format String