7.5
CVE-2004-0193
- EPSS 28.45%
- Published 15.03.2004 05:00:00
- Last modified 03.04.2025 01:03:51
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
Heap-based buffer overflow in the ISS Protocol Analysis Module (PAM), as used in certain versions of RealSecure Network 7.0 and Server Sensor 7.0, Proventia A, G, and M Series, RealSecure Desktop 7.0 and 3.6, RealSecure Guard 3.6, RealSecure Sentry 3.6, BlackICE PC Protection 3.6, and BlackICE Server Protection 3.6, allows remote attackers to execute arbitrary code via an SMB packet containing an authentication request with a long username.
Data is provided by the National Vulnerability Database (NVD)
Iss ≫ Blackice Agent Server Version3.6eca
Iss ≫ Blackice Pc Protection Version3.6cbd
Iss ≫ Blackice Server Protection Version3.6cbz
Iss ≫ Realsecure Desktop Version3.6eca
Iss ≫ Realsecure Desktop Version3.6ecf
Iss ≫ Realsecure Desktop Version7.0ebg
Iss ≫ Realsecure Desktop Version7.0epk
Iss ≫ Realsecure Guard Version3.6ecb
Iss ≫ Realsecure Network Version7.0 Updatexpu_20.15
Iss ≫ Realsecure Sentry Version3.6ecf
Iss ≫ Realsecure Server Sensor Version7.0 Updatexpu20.16
Iss ≫ Proventia A Series Xpu Version20.15
Iss ≫ Proventia G Series Xpu Version22.3
Iss ≫ Proventia M Series Xpu Version1.30
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 28.45% | 0.963 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|