What is CVE-2004-0798?

CVE-2004-0798 is a vulnerability in N/a. Published 2004-08-27.

Is CVE-2004-0798 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2004-0798

Buffer overflow in the _maincfgret.cgi script for Ipswitch WhatsUp Gold before 8.03 Hotfix 1 allows remote attackers to execute arbitrary code via a long instancename parameter.

EPSS: 0.771 (99.0th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

rapid7/metasploit-framework

References

www.ipswitch.com/Support/WhatsUp/patch-upgrades.html (x_refsource_MISC)
566 (exploit, x_refsource_EXPLOIT-DB)
20040825 Ipswitch WhatsUp Gold Remote Buffer Overflow Vulnerability (x_refsource_IDEFENSE, third-party-advisory)
whatsup-maincfgret-bo(17111) (vdb-entry, x_refsource_XF)
11043 (vdb-entry, x_refsource_BID)

Frequently asked questions

What is CVE-2004-0798?: CVE-2004-0798 is a vulnerability in N/a. Published 2004-08-27.
Is CVE-2004-0798 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.