CVE-2004-0234

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2004-0234
Multiple stack-based buffer overflows in the get_header function in header.c for LHA 1.14, as used in products such as Barracuda Spam Firewall, allow remote attackers or local users to execute arbitrary code via long directory or file names in an LHA archive, which triggers the overflow when testing or extracting the archive.

10.0 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://www.securityfocus.com/bid/10243 Exploit Patch Vendor Advisory
http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/020776.html
http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/020778.html
http://www.debian.org/security/2004/dsa-515
http://www.redhat.com/support/errata/RHSA-2004-178.html
http://www.redhat.com/support/errata/RHSA-2004-179.html
http://security.gentoo.org/glsa/glsa-200405-02.xml
http://www.redhat.com/archives/fedora-announce-list/2004-May/msg00005.html
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000840
http://archives.neohapsis.com/archives/bugtraq/2006-04/0059.html
http://www.guay-leroux.com/projects/barracuda-advisory-LHA.txt
http://www.osvdb.org/5753
http://www.osvdb.org/5754
http://securitytracker.com/id?1015866
http://secunia.com/advisories/19514 Vendor Advisory
http://www.vupen.com/english/advisories/2006/1220 Vendor Advisory
https://bugzilla.fedora.us/show_bug.cgi?id=1833
http://marc.info/?l=bugtraq&m=108422737918885&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/16012
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9881
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A977
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:clearswift:mailsweeper:4.0:*:*:*:*:*:*:*
cpe:2.3:a:clearswift:mailsweeper:4.1:*:*:*:*:*:*:*
cpe:2.3:a:clearswift:mailsweeper:4.3.4:*:*:*:*:*:*:*
cpe:2.3:a:clearswift:mailsweeper:4.3.5:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:4.51:*:linux_servers:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:4.51:*:linux_workstations:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:5.41:*:workstations:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:5.42:*:mimesweeper:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_internet_security:2003:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_internet_security:2004:*:*:*:*:*:*:*
cpe:2.3:a:sgi:propack:2.4:*:*:*:*:*:*:*
cpe:2.3:a:sgi:propack:3.0:*:*:*:*:*:*:*
cpe:2.3:a:clearswift:mailsweeper:4.2:*:*:*:*:*:*:*
cpe:2.3:a:clearswift:mailsweeper:4.3:*:*:*:*:*:*:*
cpe:2.3:a:clearswift:mailsweeper:4.3.6:*:*:*:*:*:*:*
cpe:2.3:a:clearswift:mailsweeper:4.3.6_sp1:*:*:*:*:*:*:*
cpe:2.3:a:clearswift:mailsweeper:4.3.7:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:4.52:*:linux_gateways:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:4.52:*:linux_servers:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:5.42:*:windows_servers:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:5.42:*:workstations:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_personal_express:4.5:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_personal_express:4.6:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_personal_express:4.7:*:*:*:*:*:*:*
cpe:2.3:a:stalker:cgpmcafee:3.2:*:*:*:*:*:*:*
cpe:2.3:a:tsugio_okamoto:lha:1.14:*:*:*:*:*:*:*
cpe:2.3:a:clearswift:mailsweeper:4.3.10:*:*:*:*:*:*:*
cpe:2.3:a:clearswift:mailsweeper:4.3.11:*:*:*:*:*:*:*
cpe:2.3:a:clearswift:mailsweeper:4.3.8:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:2003:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:4.52:*:linux_workstations:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:4.60:*:samba_servers:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:5.5:*:client_security:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:5.52:*:client_security:*:*:*:*:*
cpe:2.3:a:f-secure:internet_gatekeeper:6.31:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:internet_gatekeeper:6.32:*:*:*:*:*:*:*
cpe:2.3:a:tsugio_okamoto:lha:1.15:*:*:*:*:*:*:*
cpe:2.3:a:tsugio_okamoto:lha:1.17:*:*:*:*:*:*:*
cpe:2.3:a:clearswift:mailsweeper:4.3.13:*:*:*:*:*:*:*
cpe:2.3:a:clearswift:mailsweeper:4.3.3:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:2004:*:*:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:4.51:*:linux_gateways:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:5.41:*:mimesweeper:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:5.41:*:windows_servers:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_anti-virus:6.21:*:ms_exchange:*:*:*:*:*
cpe:2.3:a:f-secure:f-secure_for_firewalls:6.20:*:*:*:*:*:*:*
cpe:2.3:a:rarlab:winrar:3.20:*:*:*:*:*:*:*
cpe:2.3:a:redhat:lha:1.14i-9:*:i386:*:*:*:*:*
cpe:2.3:a:winzip:winzip:9.0:*:*:*:*:*:*:*

Configuration 2 (hide)

cpe:2.3:o:redhat:fedora_core:core_1.0:*:*:*:*:*:*:*
Information

Published : 2004-08-18 04:00

Updated : 2017-10-11 01:29

NVD link : CVE-2004-0234

Mitre link : CVE-2004-0234

JSON object : View

Products Affected

f-secure

  • internet_gatekeeper
  • f-secure_for_firewalls
  • f-secure_internet_security
  • f-secure_anti-virus
  • f-secure_personal_express

clearswift

  • mailsweeper

sgi

  • propack

rarlab

  • winrar

tsugio_okamoto

  • lha

stalker

  • cgpmcafee

redhat

  • lha
  • fedora_core

winzip

  • winzip
CWE
CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer