CVE Vulnerabilities

CVE-2004-2003

Published: May 06, 2004 | Modified: Nov 20, 2024
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Buffer overflow in the ssl_prcert function in the SSLway filter (sslway.c) for DeleGate 8.9.2 and earlier allows remote attackers to execute arbitrary code via a certificate with a long (1) subject or (2) issuer name field.

Affected Software

Name Vendor Start Version End Version
Delegate Delegate 7.7.0 (including) 7.7.0 (including)
Delegate Delegate 7.7.1 (including) 7.7.1 (including)
Delegate Delegate 7.8.0 (including) 7.8.0 (including)
Delegate Delegate 7.8.1 (including) 7.8.1 (including)
Delegate Delegate 7.8.2 (including) 7.8.2 (including)
Delegate Delegate 7.9.11 (including) 7.9.11 (including)
Delegate Delegate 8.3.3 (including) 8.3.3 (including)
Delegate Delegate 8.3.4 (including) 8.3.4 (including)
Delegate Delegate 8.4.0 (including) 8.4.0 (including)
Delegate Delegate 8.5.0 (including) 8.5.0 (including)
Delegate Delegate 8.9 (including) 8.9 (including)
Delegate Delegate 8.9.1 (including) 8.9.1 (including)
Delegate Delegate 8.9.2 (including) 8.9.2 (including)

References