CVE-2004-0369

{"id": "CVE-2004-0369", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": true, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2004-12-31T05:00:00.000", "references": [{"url": "http://securityresponse.symantec.com/avcenter/security/Content/2004.08.26.html", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.auscert.org.au/render.html?it=4339", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.ciac.org/ciac/bulletins/o-206.shtml", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/11039", "source": "cve@mitre.org"}, {"url": "http://xforce.iss.net/xforce/alerts/id/181", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15669", "source": "cve@mitre.org"}, {"url": "http://securityresponse.symantec.com/avcenter/security/Content/2004.08.26.html", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.auscert.org.au/render.html?it=4339", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.ciac.org/ciac/bulletins/o-206.shtml", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/11039", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://xforce.iss.net/xforce/alerts/id/181", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15669", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Buffer overflow in Entrust LibKmp ISAKMP library, as used by Symantec Enterprise Firewall 7.0 through 8.0, Gateway Security 5300 1.0, Gateway Security 5400 2.0, and VelociRaptor 1.5, allows remote attackers to execute arbitrary code via a crafted ISAKMP payload."}], "lastModified": "2024-11-20T23:48:26.050", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:entrust:entrust_libkmp_isakmp_library:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "302E62EC-C81E-4BD5-A8E0-0CC55F34BE17"}, {"criteria": "cpe:2.3:a:symantec:enterprise_firewall:7.0:*:solaris:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "8656778B-9299-436B-AF8A-64C042273751"}, {"criteria": "cpe:2.3:a:symantec:enterprise_firewall:7.0.4:*:solaris:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "78A16B88-E49B-4C4C-A82E-03511C99872D"}, {"criteria": "cpe:2.3:a:symantec:enterprise_firewall:7.0.4:*:windows_2000_nt:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "30BE919C-A7DF-46C3-BFF6-F0452F0FC434"}, {"criteria": "cpe:2.3:a:symantec:enterprise_firewall:8.0:*:solaris:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F66D6BB6-2355-4644-8A18-725F9E970EA2"}, {"criteria": "cpe:2.3:a:symantec:enterprise_firewall:8.0:*:windows_2000_nt:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "AD892E2E-E1C9-49A2-A42C-3B56F2B0BA4D"}, {"criteria": "cpe:2.3:a:symantec:velociraptor:1.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C260200D-60D2-41E2-8F5C-50796EBBF8E2"}], "operator": "OR"}]}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:symantec:gateway_security_5300:1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3EDDB133-A6C8-45B4-9988-3D3D2F3952E8"}, {"criteria": "cpe:2.3:h:symantec:gateway_security_5400:2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C1B7CF42-F93E-48E6-BCD2-30B357F80DDA"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}