1. CVE-Search
  2. CVE-2004-1350
ID CVE-2004-1350
Summary Multiple buffer overflows in Sun Java System Web Proxy Server (formerly Sun ONE Proxy Server) 3.6 through 3.6 SP4 allow remote attackers to execute arbitrary code via unknown vectors, possibly CONNECT requests.
References
Vulnerable Configurations
  • cpe:2.3:a:sun:java_system_web_proxy_server:3.6:*:*:*:*:*:*:*
    cpe:2.3:a:sun:java_system_web_proxy_server:3.6:*:*:*:*:*:*:*
  • cpe:2.3:a:sun:java_system_web_proxy_server:3.6:sp1:*:*:*:*:*:*
    cpe:2.3:a:sun:java_system_web_proxy_server:3.6:sp1:*:*:*:*:*:*
  • cpe:2.3:a:sun:java_system_web_proxy_server:3.6:sp2:*:*:*:*:*:*
    cpe:2.3:a:sun:java_system_web_proxy_server:3.6:sp2:*:*:*:*:*:*
  • cpe:2.3:a:sun:java_system_web_proxy_server:3.6:sp3:*:*:*:*:*:*
    cpe:2.3:a:sun:java_system_web_proxy_server:3.6:sp3:*:*:*:*:*:*
  • cpe:2.3:a:sun:java_system_web_proxy_server:3.6:sp4:*:*:*:*:*:*
    cpe:2.3:a:sun:java_system_web_proxy_server:3.6:sp4:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 11-07-2017 - 01:30)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
auscert ESB-2004.0691
bid 11566
cert-vn VU#964401
ciac P-027
misc http://www.pentest.co.uk/documents/ptl-2004-06.html
osvdb 11304
sectrack 1012005
secunia 13036
sunalert 57606
xf sun-web-proxy-bo(17920)
Last major update 11-07-2017 - 01:30
Published 30-10-2004 - 04:00
Last modified 11-07-2017 - 01:30
Back to Top