What is CVE-2004-0362?

CVE-2004-0362 is a vulnerability in N/a. Published 2004-03-23.

Is CVE-2004-0362 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2004-0362

Multiple stack-based buffer overflows in the ICQ parsing routines of the ISS Protocol Analysis Module (PAM) component, as used in various RealSecure, Proventia, and BlackICE products, allow remote attackers to execute arbitrary code via a…

EPSS: 0.834 (99.3th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

20040318 Vulnerability in ICQ Parsing in ISS Products (x_refsource_ISS, third-party-advisory)
9913 (vdb-entry, x_refsource_BID)
11073 (x_refsource_SECUNIA, third-party-advisory)
O-104 (government-resource, third-party-advisory, x_refsource_CIAC)
AD20040318 (third-party-advisory, x_refsource_EEYE)
pam-icq-parsing-bo(15442) (vdb-entry, x_refsource_XF)
4355 (x_refsource_OSVDB, vdb-entry)
VU#947254 (x_refsource_CERT-VN, third-party-advisory)
20040318 EEYE: Internet Security Systems PAM ICQ Server Response Processing Vulnerability (mailing-list, x_refsource_BUGTRAQ)
witty-worm-propagation(15543) (vdb-entry, x_refsource_XF)

Frequently asked questions

What is CVE-2004-0362?: CVE-2004-0362 is a vulnerability in N/a. Published 2004-03-23.
Is CVE-2004-0362 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.