[Japanese]

JVNDB-2004-000179

DeleGate SSLway Filter Buffer Overflow Vulnerability

Overview

Delegate SSLway Filter contains a buffer overflow vulnerability which stems from lack of memory space to handle SSL certificates.
CVSS Severity (What is CVSS?)

CVSS V2 Severity:
Base Metrics 7.5 (High) [NVD Score]
  • Access Vector: Network
  • Access Complexity: Low
  • Authentication: None
  • Confidentiality Impact: Partial
  • Integrity Impact: Partial
  • Availability Impact: Partial
Affected Products


DeleGate.org
  • DeleGate 8.9.2 and earlier

Impact

An attacker could execute arbitrary code with the privileges of the user running DeleGate.
Solution

Please refer to the 'Vendor Information' and 'References' section for appropriate remediation.
Vendor Information

DeleGate.org
CWE (What is CWE?)

CVE (What is CVE?)

  1. CVE-2004-2003
References

  1. National Vulnerability Database (NVD) : CVE-2004-2003
  2. Secunia Advisory : SA11569
  3. SecurityFocus : 10295
  4. ISS X-Force Database : 16078
  5. SecuriTeam : 5UP041PCUC
  6. OPEN SOURCE VULNERABILITY DATABASE (OSVDB) : 5945
Revision History

  • [2008/05/21]
      Web page published

Date Public2004/05/06
Date First Published2008/05/21
Date Last Updated2008/05/21