Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2004-0722 | First vendor Publication | 2004-08-18 |
Vendor | Cve | Last vendor Modification | 2017-10-11 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:L/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 10 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Low |
Cvss Expoit Score | 10 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Integer overflow in the SOAPParameter object constructor in (1) Netscape version 7.0 and 7.1 and (2) Mozilla 1.6, and possibly earlier versions, allows remote attackers to execute arbitrary code. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0722 |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:4629 | |||
Oval ID: | oval:org.mitre.oval:def:4629 | ||
Title: | Mozilla, Netscape SOAPParameter Integer Overflow | ||
Description: | Integer overflow in the SOAPParameter object constructor in (1) Netscape version 7.0 and 7.1 and (2) Mozilla 1.6, and possibly earlier versions, allows remote attackers to execute arbitrary code. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2004-0722 | Version: | 1 |
Platform(s): | Sun Solaris 8 | Product(s): | mozilla |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:9378 | |||
Oval ID: | oval:org.mitre.oval:def:9378 | ||
Title: | Integer overflow in the SOAPParameter object constructor in (1) Netscape version 7.0 and 7.1 and (2) Mozilla 1.6, and possibly earlier versions, allows remote attackers to execute arbitrary code. | ||
Description: | Integer overflow in the SOAPParameter object constructor in (1) Netscape version 7.0 and 7.1 and (2) Mozilla 1.6, and possibly earlier versions, allows remote attackers to execute arbitrary code. | ||
Family: | unix | Class: | vulnerability |
Reference(s): | CVE-2004-0722 | Version: | 5 |
Platform(s): | Red Hat Enterprise Linux 3 CentOS Linux 3 | Product(s): | |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 1 | |
Application | 2 |
OpenVAS Exploits
Date | Description |
---|---|
2009-10-10 | Name : SLES9: Security update for Mozilla File : nvt/sles9p5016546.nasl |
2008-09-04 | Name : FreeBSD Ports: firefox File : nvt/freebsd_firefox12.nasl |
0000-00-00 | Name : Slackware Advisory SSA:2004-223-01 Mozilla File : nvt/esoft_slk_ssa_2004_223_01.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
59316 | Netscape SOAPParameter Object Constructor Overflow |
8281 | Mozilla Browsers SOAPParameter Object Constructor Overflow Mozilla/Netscape contains a flaw that may allow a malicious user to corrupt heap information. The issue is triggered when an integer overflow in the SOAPParameter object constructor occurs. It is possible that the flaw may allow the remote execution of arbitrary code resulting in a loss of integrity and/or availability. |
Snort® IPS/IDS
Date | Description |
---|---|
2018-01-17 | Mozilla Firefox SOAPParameter integer overflow attempt RuleID : 45184 - Revision : 1 - Type : BROWSER-FIREFOX |
2018-01-17 | Mozilla Firefox SOAPParameter integer overflow attempt RuleID : 45183 - Revision : 1 - Type : BROWSER-FIREFOX |
2018-01-17 | Mozilla Firefox SOAPParameter integer overflow attempt RuleID : 45182 - Revision : 1 - Type : BROWSER-FIREFOX |
2018-01-17 | Mozilla Firefox SOAPParameter integer overflow attempt RuleID : 45181 - Revision : 1 - Type : BROWSER-FIREFOX |
2018-01-17 | Mozilla Firefox SOAPParameter integer overflow attempt RuleID : 45180 - Revision : 1 - Type : BROWSER-FIREFOX |
2018-01-17 | Mozilla Firefox SOAPParameter integer overflow attempt RuleID : 45179 - Revision : 1 - Type : BROWSER-FIREFOX |
2018-01-17 | Mozilla Firefox SOAPParameter integer overflow attempt RuleID : 45178 - Revision : 1 - Type : BROWSER-FIREFOX |
2018-01-17 | Mozilla Firefox SOAPParameter integer overflow attempt RuleID : 45177 - Revision : 1 - Type : BROWSER-FIREFOX |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2009-04-23 | Name : The remote FreeBSD host is missing one or more security-related updates. File : freebsd_pkg_a4fd8f5305eb11d9b45d000c41e2cdad.nasl - Type : ACT_GATHER_INFO |
2005-07-13 | Name : The remote Slackware host is missing a security update. File : Slackware_SSA_2004-223-01.nasl - Type : ACT_GATHER_INFO |
2004-08-22 | Name : The remote Mandrake Linux host is missing one or more security updates. File : mandrake_MDKSA-2004-082.nasl - Type : ACT_GATHER_INFO |
2004-08-05 | Name : The remote Red Hat host is missing one or more security updates. File : redhat-RHSA-2004-421.nasl - Type : ACT_GATHER_INFO |
2004-08-02 | Name : The remote Windows host contains a web browser that is affected by an integer... File : mozilla_soapparameter_overflow.nasl - Type : ACT_GATHER_INFO |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2021-05-04 12:02:22 |
|
2021-04-22 01:02:32 |
|
2020-05-23 00:15:51 |
|
2017-10-11 09:23:22 |
|
2017-07-11 12:01:29 |
|
2016-04-26 12:52:32 |
|
2014-02-17 10:27:52 |
|
2013-05-11 11:42:31 |
|