CVE Vulnerabilities

CVE-2004-2003

Published: May 06, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Buffer overflow in the ssl_prcert function in the SSLway filter (sslway.c) for DeleGate 8.9.2 and earlier allows remote attackers to execute arbitrary code via a certificate with a long (1) subject or (2) issuer name field.

Affected Software

Name Vendor Start Version End Version
Delegate Delegate 7.7.0 7.7.0
Delegate Delegate 7.7.1 7.7.1
Delegate Delegate 7.8.0 7.8.0
Delegate Delegate 7.8.1 7.8.1
Delegate Delegate 7.8.2 7.8.2
Delegate Delegate 7.9.11 7.9.11
Delegate Delegate 8.3.3 8.3.3
Delegate Delegate 8.3.4 8.3.4
Delegate Delegate 8.4.0 8.4.0
Delegate Delegate 8.5.0 8.5.0
Delegate Delegate 8.9 8.9
Delegate Delegate 8.9.1 8.9.1
Delegate Delegate 8.9.2 8.9.2

References