7.5

CVE-2004-0369

EPSS 8.5%
Published 31.12.2004 05:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Buffer overflow in Entrust LibKmp ISAKMP library, as used by Symantec Enterprise Firewall 7.0 through 8.0, Gateway Security 5300 1.0, Gateway Security 5400 2.0, and VelociRaptor 1.5, allows remote attackers to execute arbitrary code via a crafted ISAKMP payload.

Affected products Warnungen 0 Metrics 2 CWE 0 References 9

Data is provided by the National Vulnerability Database (NVD)

Entrust ≫ Entrust Libkmp Isakmp Library

Symantec ≫ Enterprise Firewall Version7.0 Editionsolaris

Symantec ≫ Enterprise Firewall Version7.0.4 Editionsolaris

Symantec ≫ Enterprise Firewall Version7.0.4 Editionwindows_2000_nt

Symantec ≫ Enterprise Firewall Version8.0 Editionsolaris

Symantec ≫ Enterprise Firewall Version8.0 Editionwindows_2000_nt

Symantec ≫ Velociraptor Version1.5

Symantec ≫ Gateway Security 5300 Version1.0

Symantec ≫ Gateway Security 5400 Version2.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	8.5%	0.915

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.5	10	6.4	AV:N/AC:L/Au:N/C:P/I:P/A:P

http://securityresponse.symantec.com/avcenter/security/Content/2004.08.26.html

Vendor Advisory

http://www.auscert.org.au/render.html?it=4339

Vendor Advisory

http://www.ciac.org/ciac/bulletins/o-206.shtml

Vendor Advisory

http://www.securityfocus.com/bid/11039

http://xforce.iss.net/xforce/alerts/id/181

Patch

Vendor Advisory

https://exchange.xforce.ibmcloud.com/vulnerabilities/15669

https://nvd.nist.gov/vuln/detail/CVE-2004-0369

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2004-0369

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2004-0369

EUVD