ID CVE-2004-0097
Summary Multiple vulnerabilities in PWLib before 1.6.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.
References
Vulnerable Configurations
  • cpe:2.3:a:openh323_project:pwlib:1.6.0
    cpe:2.3:a:openh323_project:pwlib:1.6.0
CVSS
Base: 10.0 (as of 01-01-2004 - 00:00)
Impact:
Exploitability:
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
COMPLETE COMPLETE COMPLETE
nessus via4
  • NASL family FreeBSD Local Security Checks
    NASL id FREEBSD_PKG_27C331D564C711D880E30020ED76EF5A.NASL
    description The NISCC and the OUSPG developed a test suite for the H.323 protocol. This test suite has uncovered vulnerabilities in several H.323 implementations with impacts ranging from denial-of-service to arbitrary code execution. In the FreeBSD Ports Collection, `pwlib' is directly affected. Other applications such as `asterisk' and `openh323' incorporate `pwlib' statically and so are also independently affected.
    last seen 2019-02-21
    modified 2018-11-10
    plugin id 37542
    published 2009-04-23
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=37542
    title FreeBSD : Vulnerabilities in H.323 implementations (27c331d5-64c7-11d8-80e3-0020ed76ef5a)
  • NASL family Debian Local Security Checks
    NASL id DEBIAN_DSA-448.NASL
    description Multiple vulnerabilities were discovered in pwlib, a library used to aid in writing portable applications, whereby a remote attacker could cause a denial of service or potentially execute arbitrary code. This library is most notably used in several applications implementing the H.323 teleconferencing protocol, including the OpenH323 suite, gnomemeeting and asterisk.
    last seen 2019-02-21
    modified 2018-07-20
    plugin id 15285
    published 2004-09-29
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=15285
    title Debian DSA-448-1 : pwlib - several vulnerabilities
  • NASL family Fedora Local Security Checks
    NASL id FEDORA_2004-078.NASL
    description A test suite for the H.225 protocol (part of the H.323 family) provided by the NISCC uncovered bugs in PWLib prior to version 1.6.0. An attacker could trigger these bugs by sending carefully crafted messages to an application. The effects of such an attack can vary depending on the application, but would usually result in a Denial of Service. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0097 to this issue. Users are advised to upgrade to the update packages, which contain backported security fixes and are not vulnerable to these issues. Red Hat would like to thank Craig Southeren of the OpenH323 project for providing the fixes for these issues. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without introducing additional issues.
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 13678
    published 2004-07-23
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=13678
    title Fedora Core 1 : pwlib-1.5.0-4 (2004-078)
  • NASL family FreeBSD Local Security Checks
    NASL id FREEBSD_H323_BUGS.NASL
    description The following package needs to be updated: asterisk
    last seen 2016-09-26
    modified 2004-07-06
    plugin id 12548
    published 2004-07-06
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=12548
    title FreeBSD : Vulnerabilities in H.323 implementations (63)
  • NASL family Gentoo Local Security Checks
    NASL id GENTOO_GLSA-200404-11.NASL
    description The remote host is affected by the vulnerability described in GLSA-200404-11 (Multiple Vulnerabilities in pwlib) Multiple vulnerabilities have been found in the implementation of protocol H.323 contained in pwlib. Most of the vulnerabilies are in the parsing of ASN.1 elements which would allow an attacker to use a maliciously crafted ASN.1 element to cause unpredictable behavior in pwlib. Impact : An attacker may cause a denial of service condition or cause a buffer overflow that would allow arbitrary code to be executed with root privileges. Workaround : Blocking ports 1719 and 1720 may reduce the likelihood of an attack. All users are advised to upgrade to the latest version of the affected package.
    last seen 2019-02-21
    modified 2016-10-05
    plugin id 14476
    published 2004-08-30
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=14476
    title GLSA-200404-11 : Multiple Vulnerabilities in pwlib
  • NASL family Mandriva Local Security Checks
    NASL id MANDRAKE_MDKSA-2004-017.NASL
    description The NISCC uncovered bugs in pwlib prior to version 1.6.0 via a test suite for the H.225 protocol. An attacker could trigger these bugs by sending carefully crafted messages to an application that uses pwlib, and the severity would vary based on the application, but likely would result in a Denial of Service (DoS). The updated packages provide backported fixes from Craig Southeren of the OpenH323 project to protect against this issue.
    last seen 2019-02-21
    modified 2018-07-19
    plugin id 14117
    published 2004-07-31
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=14117
    title Mandrake Linux Security Advisory : pwlib (MDKSA-2004:017)
  • NASL family Red Hat Local Security Checks
    NASL id REDHAT-RHSA-2004-047.NASL
    description Updated PWLib packages that contain fixes for security issues found during protocol testing by the NISCC are now available. PWLib is a cross-platform class library designed to support the OpenH323 project. OpenH323 provides an implementation of the ITU H.323 teleconferencing protocol, used by packages such as Gnome Meeting. A test suite for the H.225 protocol (part of the H.323 family) provided by the NISCC uncovered bugs in PWLib prior to version 1.6.0. An attacker could trigger these bugs by sending carefully crafted messages to an application. The effects of such an attack can vary depending on the application, but would usually result in a Denial of Service. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CVE-2004-0097 to this issue. Users are advised to upgrade to the erratum packages, which contain backported security fixes and are not vulnerable to these issues. Red Hat would like to thank Craig Southeren of the OpenH323 project for providing the fixes for these issues.
    last seen 2019-02-21
    modified 2018-11-15
    plugin id 12460
    published 2004-07-06
    reporter Tenable
    source https://www.tenable.com/plugins/index.php?view=single&id=12460
    title RHEL 3 : pwlib (RHSA-2004:047)
oval via4
  • accepted 2013-04-29T04:00:59.805-04:00
    class vulnerability
    contributors
    • name Aharon Chernin
      organization SCAP.com, LLC
    • name Dragos Prisaca
      organization G2, Inc.
    definition_extensions
    • comment The operating system installed on the system is Red Hat Enterprise Linux 3
      oval oval:org.mitre.oval:def:11782
    • comment CentOS Linux 3.x
      oval oval:org.mitre.oval:def:16651
    description Multiple vulnerabilities in PWLib before 1.6.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.
    family unix
    id oval:org.mitre.oval:def:10056
    status accepted
    submitted 2010-07-09T03:56:16-04:00
    title Multiple vulnerabilities in PWLib before 1.6.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.
    version 24
  • accepted 2010-09-20T04:00:37.420-04:00
    class vulnerability
    contributors
    • name Jay Beale
      organization Bastille Linux
    • name Matt Busby
      organization The MITRE Corporation
    • name Thomas R. Jones
      organization Maitreya Security
    • name Jonathan Baker
      organization The MITRE Corporation
    description Multiple vulnerabilities in PWLib before 1.6.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.
    family unix
    id oval:org.mitre.oval:def:803
    status accepted
    submitted 2004-03-20T12:00:00.000-04:00
    title RedHat Code Execution and DoS Vulnerabilities in PWLib
    version 35
  • accepted 2010-09-20T04:00:38.346-04:00
    class vulnerability
    contributors
    • name Jay Beale
      organization Bastille Linux
    • name Matt Busby
      organization The MITRE Corporation
    • name Thomas R. Jones
      organization Maitreya Security
    • name Jonathan Baker
      organization The MITRE Corporation
    description Multiple vulnerabilities in PWLib before 1.6.0 allow remote attackers to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.
    family unix
    id oval:org.mitre.oval:def:826
    status accepted
    submitted 2004-03-20T12:00:00.000-04:00
    title RedHat Enterprise 3 Code Execution and DoS Vulnerabilities in PWLib
    version 35
redhat via4
advisories
rhsa
id RHSA-2004:047
refmap via4
bid 9406
cert CA-2004-01
cert-vn VU#749342
debian DSA-448
xf pwlib-message-dos(15202)
Last major update 21-08-2010 - 00:19
Published 03-03-2004 - 00:00
Last modified 10-10-2017 - 21:29
Back to Top