cve-2004-0193
Vulnerability from cvelistv5
Published
2004-09-01 04:00
Modified
2024-08-08 00:10
Severity ?
Summary
Heap-based buffer overflow in the ISS Protocol Analysis Module (PAM), as used in certain versions of RealSecure Network 7.0 and Server Sensor 7.0, Proventia A, G, and M Series, RealSecure Desktop 7.0 and 3.6, RealSecure Guard 3.6, RealSecure Sentry 3.6, BlackICE PC Protection 3.6, and BlackICE Server Protection 3.6, allows remote attackers to execute arbitrary code via an SMB packet containing an authentication request with a long username.
References
cve@mitre.orghttp://marc.info/?l=bugtraq&m=107789851117176&w=2
cve@mitre.orghttp://secunia.com/advisories/10988
cve@mitre.orghttp://www.eeye.com/html/Research/Advisories/AD20040226.html
cve@mitre.orghttp://www.eeye.com/html/Research/Upcoming/20040213.htmlVendor Advisory
cve@mitre.orghttp://www.kb.cert.org/vuls/id/150326Patch, Third Party Advisory, US Government Resource
cve@mitre.orghttp://www.osvdb.org/4072
cve@mitre.orghttp://www.securityfocus.com/bid/9752
cve@mitre.orghttp://xforce.iss.net/xforce/alerts/id/165Patch, Vendor Advisory
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/15207
af854a3a-2127-422b-91ae-364da2661108http://marc.info/?l=bugtraq&m=107789851117176&w=2
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/10988
af854a3a-2127-422b-91ae-364da2661108http://www.eeye.com/html/Research/Advisories/AD20040226.html
af854a3a-2127-422b-91ae-364da2661108http://www.eeye.com/html/Research/Upcoming/20040213.htmlVendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.kb.cert.org/vuls/id/150326Patch, Third Party Advisory, US Government Resource
af854a3a-2127-422b-91ae-364da2661108http://www.osvdb.org/4072
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/9752
af854a3a-2127-422b-91ae-364da2661108http://xforce.iss.net/xforce/alerts/id/165Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/15207
Impacted products
Vendor Product Version
Show details on NVD website

To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-08T00:10:03.846Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "VU#150326",
            "tags": [
              "third-party-advisory",
              "x_refsource_CERT-VN",
              "x_transferred"
            ],
            "url": "http://www.kb.cert.org/vuls/id/150326"
          },
          {
            "name": "20040226 Vulnerability in SMB Parsing in ISS Products",
            "tags": [
              "third-party-advisory",
              "x_refsource_ISS",
              "x_transferred"
            ],
            "url": "http://xforce.iss.net/xforce/alerts/id/165"
          },
          {
            "name": "4072",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://www.osvdb.org/4072"
          },
          {
            "name": "10988",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/10988"
          },
          {
            "name": "20040227 EEYE: RealSecure/BlackICE Server Message Block (SMB) Processing Overflow",
            "tags": [
              "mailing-list",
              "x_refsource_BUGTRAQ",
              "x_transferred"
            ],
            "url": "http://marc.info/?l=bugtraq\u0026m=107789851117176\u0026w=2"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://www.eeye.com/html/Research/Upcoming/20040213.html"
          },
          {
            "name": "pam-smb-protocol-bo(15207)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15207"
          },
          {
            "name": "AD20040226",
            "tags": [
              "third-party-advisory",
              "x_refsource_EEYE",
              "x_transferred"
            ],
            "url": "http://www.eeye.com/html/Research/Advisories/AD20040226.html"
          },
          {
            "name": "9752",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/9752"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2004-02-27T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Heap-based buffer overflow in the ISS Protocol Analysis Module (PAM), as used in certain versions of RealSecure Network 7.0 and Server Sensor 7.0, Proventia A, G, and M Series, RealSecure Desktop 7.0 and 3.6, RealSecure Guard 3.6, RealSecure Sentry 3.6, BlackICE PC Protection 3.6, and BlackICE Server Protection 3.6, allows remote attackers to execute arbitrary code via an SMB packet containing an authentication request with a long username."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2004-03-18T10:00:00",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "VU#150326",
          "tags": [
            "third-party-advisory",
            "x_refsource_CERT-VN"
          ],
          "url": "http://www.kb.cert.org/vuls/id/150326"
        },
        {
          "name": "20040226 Vulnerability in SMB Parsing in ISS Products",
          "tags": [
            "third-party-advisory",
            "x_refsource_ISS"
          ],
          "url": "http://xforce.iss.net/xforce/alerts/id/165"
        },
        {
          "name": "4072",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://www.osvdb.org/4072"
        },
        {
          "name": "10988",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/10988"
        },
        {
          "name": "20040227 EEYE: RealSecure/BlackICE Server Message Block (SMB) Processing Overflow",
          "tags": [
            "mailing-list",
            "x_refsource_BUGTRAQ"
          ],
          "url": "http://marc.info/?l=bugtraq\u0026m=107789851117176\u0026w=2"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://www.eeye.com/html/Research/Upcoming/20040213.html"
        },
        {
          "name": "pam-smb-protocol-bo(15207)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15207"
        },
        {
          "name": "AD20040226",
          "tags": [
            "third-party-advisory",
            "x_refsource_EEYE"
          ],
          "url": "http://www.eeye.com/html/Research/Advisories/AD20040226.html"
        },
        {
          "name": "9752",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/9752"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2004-0193",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Heap-based buffer overflow in the ISS Protocol Analysis Module (PAM), as used in certain versions of RealSecure Network 7.0 and Server Sensor 7.0, Proventia A, G, and M Series, RealSecure Desktop 7.0 and 3.6, RealSecure Guard 3.6, RealSecure Sentry 3.6, BlackICE PC Protection 3.6, and BlackICE Server Protection 3.6, allows remote attackers to execute arbitrary code via an SMB packet containing an authentication request with a long username."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "VU#150326",
              "refsource": "CERT-VN",
              "url": "http://www.kb.cert.org/vuls/id/150326"
            },
            {
              "name": "20040226 Vulnerability in SMB Parsing in ISS Products",
              "refsource": "ISS",
              "url": "http://xforce.iss.net/xforce/alerts/id/165"
            },
            {
              "name": "4072",
              "refsource": "OSVDB",
              "url": "http://www.osvdb.org/4072"
            },
            {
              "name": "10988",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/10988"
            },
            {
              "name": "20040227 EEYE: RealSecure/BlackICE Server Message Block (SMB) Processing Overflow",
              "refsource": "BUGTRAQ",
              "url": "http://marc.info/?l=bugtraq\u0026m=107789851117176\u0026w=2"
            },
            {
              "name": "http://www.eeye.com/html/Research/Upcoming/20040213.html",
              "refsource": "MISC",
              "url": "http://www.eeye.com/html/Research/Upcoming/20040213.html"
            },
            {
              "name": "pam-smb-protocol-bo(15207)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15207"
            },
            {
              "name": "AD20040226",
              "refsource": "EEYE",
              "url": "http://www.eeye.com/html/Research/Advisories/AD20040226.html"
            },
            {
              "name": "9752",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/9752"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2004-0193",
    "datePublished": "2004-09-01T04:00:00",
    "dateReserved": "2004-03-04T00:00:00",
    "dateUpdated": "2024-08-08T00:10:03.846Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:iss:blackice_agent_server:3.6eca:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"68D71B50-D280-4735-BFFE-2548C3117D70\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:iss:blackice_pc_protection:3.6cbd:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D62AC2AC-E7ED-498B-805F-2300B9793C2E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:iss:blackice_server_protection:3.6cbz:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E33242A8-7BE6-4A69-A7CC-81BAFC2ADD50\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:iss:realsecure_desktop:3.6eca:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"CF2247F3-0287-40DC-8CE8-3D0E15910056\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:iss:realsecure_desktop:3.6ecf:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"23AE96AD-84D6-4C76-9197-AFCDCC6EA705\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:iss:realsecure_desktop:7.0ebg:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1F9233FA-D30A-4D0B-9605-CAA119C97CC9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:iss:realsecure_desktop:7.0epk:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F3CEB52E-9D4F-456A-A0C9-38E9D5FB6770\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:iss:realsecure_guard:3.6ecb:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"31FBC29D-CA61-44D8-A270-46A03A833B86\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:iss:realsecure_network:7.0:xpu_20.15:*:*:*:*:*:*\", \"matchCriteriaId\": \"4D69F073-8619-42F0-BCF4-EB15F22D2855\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:iss:realsecure_sentry:3.6ecf:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8983BE98-CC42-4B87-931B-31EF6B9AB840\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:iss:realsecure_server_sensor:7.0:xpu20.16:*:*:*:*:*:*\", \"matchCriteriaId\": \"A6E4DF0F-6EE2-4445-BAAA-F6762CB933F0\"}]}]}, {\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:iss:proventia_a_series_xpu:20.15:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"EC3D8ECB-C355-4AD4-8AE1-EE3621EBAB1F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:iss:proventia_g_series_xpu:22.3:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0C3D5C60-1E1C-4831-895A-7C28D279FFF8\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:h:iss:proventia_m_series_xpu:1.30:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"616323E5-C7EB-4101-9F10-1A33645FEDAB\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Heap-based buffer overflow in the ISS Protocol Analysis Module (PAM), as used in certain versions of RealSecure Network 7.0 and Server Sensor 7.0, Proventia A, G, and M Series, RealSecure Desktop 7.0 and 3.6, RealSecure Guard 3.6, RealSecure Sentry 3.6, BlackICE PC Protection 3.6, and BlackICE Server Protection 3.6, allows remote attackers to execute arbitrary code via an SMB packet containing an authentication request with a long username.\"}, {\"lang\": \"es\", \"value\": \"Desbordamiento de b\\u00fafer basado en la pila en el M\\u00f3dulo de an\\u00e1lisis de Protocolos (PAM) de ISS, usado en ciertas versiones de RealSecure Network 7.0 y Server Sensor 7.0, Proventia series A, G, y M, Desktop 7.0 y 3.6, RealSecure Guard 3.6, RealSecure Sentry 3.6, BlackICE PC Protection 3.6, y BlackICE Server Protection 3.6, permite a atacantes remotos ejecutar c\\u00f3digo arbitrario mediante un paquete SMB conteniendo una petici\\u00f3n de autenticaci\\u00f3n con un nombre de usuario largo.\"}]",
      "id": "CVE-2004-0193",
      "lastModified": "2024-11-20T23:47:58.510",
      "metrics": "{\"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:P/I:P/A:P\", \"baseScore\": 7.5, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"PARTIAL\", \"integrityImpact\": \"PARTIAL\", \"availabilityImpact\": \"PARTIAL\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 6.4, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": true, \"userInteractionRequired\": false}]}",
      "published": "2004-03-15T05:00:00.000",
      "references": "[{\"url\": \"http://marc.info/?l=bugtraq\u0026m=107789851117176\u0026w=2\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://secunia.com/advisories/10988\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.eeye.com/html/Research/Advisories/AD20040226.html\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.eeye.com/html/Research/Upcoming/20040213.html\", \"source\": \"cve@mitre.org\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.kb.cert.org/vuls/id/150326\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Third Party Advisory\", \"US Government Resource\"]}, {\"url\": \"http://www.osvdb.org/4072\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://www.securityfocus.com/bid/9752\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://xforce.iss.net/xforce/alerts/id/165\", \"source\": \"cve@mitre.org\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/15207\", \"source\": \"cve@mitre.org\"}, {\"url\": \"http://marc.info/?l=bugtraq\u0026m=107789851117176\u0026w=2\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://secunia.com/advisories/10988\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.eeye.com/html/Research/Advisories/AD20040226.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.eeye.com/html/Research/Upcoming/20040213.html\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.kb.cert.org/vuls/id/150326\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Third Party Advisory\", \"US Government Resource\"]}, {\"url\": \"http://www.osvdb.org/4072\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://www.securityfocus.com/bid/9752\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"http://xforce.iss.net/xforce/alerts/id/165\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Patch\", \"Vendor Advisory\"]}, {\"url\": \"https://exchange.xforce.ibmcloud.com/vulnerabilities/15207\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}]",
      "sourceIdentifier": "cve@mitre.org",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"NVD-CWE-Other\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2004-0193\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2004-03-15T05:00:00.000\",\"lastModified\":\"2024-11-20T23:47:58.510\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Heap-based buffer overflow in the ISS Protocol Analysis Module (PAM), as used in certain versions of RealSecure Network 7.0 and Server Sensor 7.0, Proventia A, G, and M Series, RealSecure Desktop 7.0 and 3.6, RealSecure Guard 3.6, RealSecure Sentry 3.6, BlackICE PC Protection 3.6, and BlackICE Server Protection 3.6, allows remote attackers to execute arbitrary code via an SMB packet containing an authentication request with a long username.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de b\u00fafer basado en la pila en el M\u00f3dulo de an\u00e1lisis de Protocolos (PAM) de ISS, usado en ciertas versiones de RealSecure Network 7.0 y Server Sensor 7.0, Proventia series A, G, y M, Desktop 7.0 y 3.6, RealSecure Guard 3.6, RealSecure Sentry 3.6, BlackICE PC Protection 3.6, y BlackICE Server Protection 3.6, permite a atacantes remotos ejecutar c\u00f3digo arbitrario mediante un paquete SMB conteniendo una petici\u00f3n de autenticaci\u00f3n con un nombre de usuario largo.\"}],\"metrics\":{\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":true,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-Other\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:iss:blackice_agent_server:3.6eca:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"68D71B50-D280-4735-BFFE-2548C3117D70\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:iss:blackice_pc_protection:3.6cbd:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D62AC2AC-E7ED-498B-805F-2300B9793C2E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:iss:blackice_server_protection:3.6cbz:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E33242A8-7BE6-4A69-A7CC-81BAFC2ADD50\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:iss:realsecure_desktop:3.6eca:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CF2247F3-0287-40DC-8CE8-3D0E15910056\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:iss:realsecure_desktop:3.6ecf:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"23AE96AD-84D6-4C76-9197-AFCDCC6EA705\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:iss:realsecure_desktop:7.0ebg:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F9233FA-D30A-4D0B-9605-CAA119C97CC9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:iss:realsecure_desktop:7.0epk:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F3CEB52E-9D4F-456A-A0C9-38E9D5FB6770\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:iss:realsecure_guard:3.6ecb:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"31FBC29D-CA61-44D8-A270-46A03A833B86\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:iss:realsecure_network:7.0:xpu_20.15:*:*:*:*:*:*\",\"matchCriteriaId\":\"4D69F073-8619-42F0-BCF4-EB15F22D2855\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:iss:realsecure_sentry:3.6ecf:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8983BE98-CC42-4B87-931B-31EF6B9AB840\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:iss:realsecure_server_sensor:7.0:xpu20.16:*:*:*:*:*:*\",\"matchCriteriaId\":\"A6E4DF0F-6EE2-4445-BAAA-F6762CB933F0\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:iss:proventia_a_series_xpu:20.15:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EC3D8ECB-C355-4AD4-8AE1-EE3621EBAB1F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:iss:proventia_g_series_xpu:22.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0C3D5C60-1E1C-4831-895A-7C28D279FFF8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:h:iss:proventia_m_series_xpu:1.30:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"616323E5-C7EB-4101-9F10-1A33645FEDAB\"}]}]}],\"references\":[{\"url\":\"http://marc.info/?l=bugtraq\u0026m=107789851117176\u0026w=2\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://secunia.com/advisories/10988\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.eeye.com/html/Research/Advisories/AD20040226.html\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.eeye.com/html/Research/Upcoming/20040213.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/150326\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.osvdb.org/4072\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://www.securityfocus.com/bid/9752\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://xforce.iss.net/xforce/alerts/id/165\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/15207\",\"source\":\"cve@mitre.org\"},{\"url\":\"http://marc.info/?l=bugtraq\u0026m=107789851117176\u0026w=2\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://secunia.com/advisories/10988\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.eeye.com/html/Research/Advisories/AD20040226.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.eeye.com/html/Research/Upcoming/20040213.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.kb.cert.org/vuls/id/150326\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\",\"US Government Resource\"]},{\"url\":\"http://www.osvdb.org/4072\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://www.securityfocus.com/bid/9752\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"http://xforce.iss.net/xforce/alerts/id/165\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"https://exchange.xforce.ibmcloud.com/vulnerabilities/15207\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"}]}}"
  }
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Sightings

Author Source Type Date

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
  • Confirmed: The vulnerability is confirmed from an analyst perspective.
  • Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
  • Patched: This vulnerability was successfully patched by the user reporting the sighting.
  • Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
  • Not confirmed: The user expresses doubt about the veracity of the vulnerability.
  • Not patched: This vulnerability was not successfully patched by the user reporting the sighting.