CVE-2004-0362
Summary
| CVE | CVE-2004-0362 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2004-04-15 04:00:00 UTC |
| Updated | 2017-07-11 01:30:00 UTC |
| Description | Multiple stack-based buffer overflows in the ICQ parsing routines of the ISS Protocol Analysis Module (PAM) component, as used in various RealSecure, Proventia, and BlackICE products, allow remote attackers to execute arbitrary code via a SRV_MULTI response containing a SRV_USER_ONLINE response packet and a SRV_META_USER response packet with long (1) nickname, (2) firstname, (3) lastname, or (4) email address fields, as exploited by the Witty worm. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Iss | Blackice Agent Server | 3.6ebz | All | All | All |
| Application | Iss | Blackice Agent Server | 3.6eca | All | All | All |
| Application | Iss | Blackice Agent Server | 3.6ecb | All | All | All |
| Application | Iss | Blackice Agent Server | 3.6ecc | All | All | All |
| Application | Iss | Blackice Agent Server | 3.6ecd | All | All | All |
| Application | Iss | Blackice Agent Server | 3.6ece | All | All | All |
| Application | Iss | Blackice Agent Server | 3.6ecf | All | All | All |
| Application | Iss | Blackice Agent Server | 3.6ebz | All | All | All |
| Application | Iss | Blackice Agent Server | 3.6eca | All | All | All |
| Application | Iss | Blackice Agent Server | 3.6ecb | All | All | All |
| Application | Iss | Blackice Agent Server | 3.6ecc | All | All | All |
| Application | Iss | Blackice Agent Server | 3.6ecd | All | All | All |
| Application | Iss | Blackice Agent Server | 3.6ece | All | All | All |
| Application | Iss | Blackice Agent Server | 3.6ecf | All | All | All |
| Application | Iss | Blackice Pc Protection | 3.6cbz | All | All | All |
| Application | Iss | Blackice Pc Protection | 3.6cca | All | All | All |
| Application | Iss | Blackice Pc Protection | 3.6ccb | All | All | All |
| Application | Iss | Blackice Pc Protection | 3.6ccc | All | All | All |
| Application | Iss | Blackice Pc Protection | 3.6ccd | All | All | All |
| Application | Iss | Blackice Pc Protection | 3.6cce | All | All | All |
| Application | Iss | Blackice Pc Protection | 3.6ccf | All | All | All |
| Application | Iss | Blackice Pc Protection | 3.6cbz | All | All | All |
| Application | Iss | Blackice Pc Protection | 3.6cca | All | All | All |
| Application | Iss | Blackice Pc Protection | 3.6ccb | All | All | All |
| Application | Iss | Blackice Pc Protection | 3.6ccc | All | All | All |
| Application | Iss | Blackice Pc Protection | 3.6ccd | All | All | All |
| Application | Iss | Blackice Pc Protection | 3.6cce | All | All | All |
| Application | Iss | Blackice Pc Protection | 3.6ccf | All | All | All |
| Application | Iss | Blackice Server Protection | 3.6cbz | All | All | All |
| Application | Iss | Blackice Server Protection | 3.6cca | All | All | All |
| Application | Iss | Blackice Server Protection | 3.6ccb | All | All | All |
| Application | Iss | Blackice Server Protection | 3.6ccc | All | All | All |
| Application | Iss | Blackice Server Protection | 3.6ccd | All | All | All |
| Application | Iss | Blackice Server Protection | 3.6cce | All | All | All |
| Application | Iss | Blackice Server Protection | 3.6ccf | All | All | All |
| Application | Iss | Blackice Server Protection | 3.6cbz | All | All | All |
| Application | Iss | Blackice Server Protection | 3.6cca | All | All | All |
| Application | Iss | Blackice Server Protection | 3.6ccb | All | All | All |
| Application | Iss | Blackice Server Protection | 3.6ccc | All | All | All |
| Application | Iss | Blackice Server Protection | 3.6ccd | All | All | All |
| Application | Iss | Blackice Server Protection | 3.6cce | All | All | All |
| Application | Iss | Blackice Server Protection | 3.6ccf | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 20.11 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.1 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.10 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.2 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.3 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.4 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.5 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.6 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.7 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.8 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.9 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 20.11 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.1 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.10 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.2 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.3 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.4 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.5 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.6 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.7 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.8 | All | All | All |
| Hardware | Iss | Proventia A Series Xpu | 22.9 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.1 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.10 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.11 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.2 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.3 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.4 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.5 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.6 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.7 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.8 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.9 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.1 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.10 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.11 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.2 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.3 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.4 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.5 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.6 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.7 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.8 | All | All | All |
| Hardware | Iss | Proventia G Series Xpu | 22.9 | All | All | All |
| Hardware | Iss | Proventia M Series Xpu | 1.1 | All | All | All |
| Hardware | Iss | Proventia M Series Xpu | 1.2 | All | All | All |
| Hardware | Iss | Proventia M Series Xpu | 1.3 | All | All | All |
| Hardware | Iss | Proventia M Series Xpu | 1.4 | All | All | All |
| Hardware | Iss | Proventia M Series Xpu | 1.5 | All | All | All |
| Hardware | Iss | Proventia M Series Xpu | 1.6 | All | All | All |
| Hardware | Iss | Proventia M Series Xpu | 1.7 | All | All | All |
| Hardware | Iss | Proventia M Series Xpu | 1.8 | All | All | All |
| Hardware | Iss | Proventia M Series Xpu | 1.9 | All | All | All |
| Hardware | Iss | Proventia M Series Xpu | 1.1 | All | All | All |
| Hardware | Iss | Proventia M Series Xpu | 1.2 | All | All | All |
| Hardware | Iss | Proventia M Series Xpu | 1.3 | All | All | All |
| Hardware | Iss | Proventia M Series Xpu | 1.4 | All | All | All |
| Hardware | Iss | Proventia M Series Xpu | 1.5 | All | All | All |
| Hardware | Iss | Proventia M Series Xpu | 1.6 | All | All | All |
| Hardware | Iss | Proventia M Series Xpu | 1.7 | All | All | All |
| Hardware | Iss | Proventia M Series Xpu | 1.8 | All | All | All |
| Hardware | Iss | Proventia M Series Xpu | 1.9 | All | All | All |
| Application | Iss | Realsecure Desktop | 3.6ebz | All | All | All |
| Application | Iss | Realsecure Desktop | 3.6eca | All | All | All |
| Application | Iss | Realsecure Desktop | 3.6ecb | All | All | All |
| Application | Iss | Realsecure Desktop | 3.6ecd | All | All | All |
| Application | Iss | Realsecure Desktop | 3.6ece | All | All | All |
| Application | Iss | Realsecure Desktop | 3.6ecf | All | All | All |
| Application | Iss | Realsecure Desktop | 7.0eba | All | All | All |
| Application | Iss | Realsecure Desktop | 7.0ebf | All | All | All |
| Application | Iss | Realsecure Desktop | 7.0ebg | All | All | All |
| Application | Iss | Realsecure Desktop | 7.0ebh | All | All | All |
| Application | Iss | Realsecure Desktop | 7.0ebj | All | All | All |
| Application | Iss | Realsecure Desktop | 7.0ebk | All | All | All |
| Application | Iss | Realsecure Desktop | 7.0ebl | All | All | All |
| Application | Iss | Realsecure Desktop | 3.6ebz | All | All | All |
| Application | Iss | Realsecure Desktop | 3.6eca | All | All | All |
| Application | Iss | Realsecure Desktop | 3.6ecb | All | All | All |
| Application | Iss | Realsecure Desktop | 3.6ecd | All | All | All |
| Application | Iss | Realsecure Desktop | 3.6ece | All | All | All |
| Application | Iss | Realsecure Desktop | 3.6ecf | All | All | All |
| Application | Iss | Realsecure Desktop | 7.0eba | All | All | All |
| Application | Iss | Realsecure Desktop | 7.0ebf | All | All | All |
| Application | Iss | Realsecure Desktop | 7.0ebg | All | All | All |
| Application | Iss | Realsecure Desktop | 7.0ebh | All | All | All |
| Application | Iss | Realsecure Desktop | 7.0ebj | All | All | All |
| Application | Iss | Realsecure Desktop | 7.0ebk | All | All | All |
| Application | Iss | Realsecure Desktop | 7.0ebl | All | All | All |
| Application | Iss | Realsecure Guard | 3.6ebz | All | All | All |
| Application | Iss | Realsecure Guard | 3.6eca | All | All | All |
| Application | Iss | Realsecure Guard | 3.6ecb | All | All | All |
| Application | Iss | Realsecure Guard | 3.6ecc | All | All | All |
| Application | Iss | Realsecure Guard | 3.6ecd | All | All | All |
| Application | Iss | Realsecure Guard | 3.6ece | All | All | All |
| Application | Iss | Realsecure Guard | 3.6ecf | All | All | All |
| Application | Iss | Realsecure Guard | 3.6ebz | All | All | All |
| Application | Iss | Realsecure Guard | 3.6eca | All | All | All |
| Application | Iss | Realsecure Guard | 3.6ecb | All | All | All |
| Application | Iss | Realsecure Guard | 3.6ecc | All | All | All |
| Application | Iss | Realsecure Guard | 3.6ecd | All | All | All |
| Application | Iss | Realsecure Guard | 3.6ece | All | All | All |
| Application | Iss | Realsecure Guard | 3.6ecf | All | All | All |
| Application | Iss | Realsecure Network Sensor | 7.0 | All | All | All |
| Application | Iss | Realsecure Network Sensor | 7.0 | xpu_20.11 | All | All |
| Application | Iss | Realsecure Network Sensor | 7.0 | xpu_22.10 | All | All |
| Application | Iss | Realsecure Network Sensor | 7.0 | xpu_22.4 | All | All |
| Application | Iss | Realsecure Network Sensor | 7.0 | xpu_22.9 | All | All |
| Application | Iss | Realsecure Network Sensor | 7.0 | All | All | All |
| Application | Iss | Realsecure Network Sensor | 7.0 | xpu_20.11 | All | All |
| Application | Iss | Realsecure Network Sensor | 7.0 | xpu_22.10 | All | All |
| Application | Iss | Realsecure Network Sensor | 7.0 | xpu_22.4 | All | All |
| Application | Iss | Realsecure Network Sensor | 7.0 | xpu_22.9 | All | All |
| Application | Iss | Realsecure Sentry | 3.6ebz | All | All | All |
| Application | Iss | Realsecure Sentry | 3.6eca | All | All | All |
| Application | Iss | Realsecure Sentry | 3.6ecb | All | All | All |
| Application | Iss | Realsecure Sentry | 3.6ecc | All | All | All |
| Application | Iss | Realsecure Sentry | 3.6ecd | All | All | All |
| Application | Iss | Realsecure Sentry | 3.6ece | All | All | All |
| Application | Iss | Realsecure Sentry | 3.6ecf | All | All | All |
| Application | Iss | Realsecure Sentry | 3.6ebz | All | All | All |
| Application | Iss | Realsecure Sentry | 3.6eca | All | All | All |
| Application | Iss | Realsecure Sentry | 3.6ecb | All | All | All |
| Application | Iss | Realsecure Sentry | 3.6ecc | All | All | All |
| Application | Iss | Realsecure Sentry | 3.6ecd | All | All | All |
| Application | Iss | Realsecure Sentry | 3.6ece | All | All | All |
| Application | Iss | Realsecure Sentry | 3.6ecf | All | All | All |
| Application | Iss | Realsecure Server Sensor | 6.0 | All | windows | All |
| Application | Iss | Realsecure Server Sensor | 6.0.1 | All | windows | All |
| Application | Iss | Realsecure Server Sensor | 6.0.1_win_sr1.1 | All | All | All |
| Application | Iss | Realsecure Server Sensor | 6.5 | All | windows | All |
| Application | Iss | Realsecure Server Sensor | 6.5 | sr3.2 | windows | All |
| Application | Iss | Realsecure Server Sensor | 6.5 | sr3.3 | windows | All |
| Application | Iss | Realsecure Server Sensor | 6.5_win_sr3.1 | All | All | All |
| Application | Iss | Realsecure Server Sensor | 6.5_win_sr3.10 | All | All | All |
| Application | Iss | Realsecure Server Sensor | 6.5_win_sr3.4 | All | All | All |
| Application | Iss | Realsecure Server Sensor | 6.5_win_sr3.5 | All | All | All |
| Application | Iss | Realsecure Server Sensor | 6.5_win_sr3.6 | All | All | All |
| Application | Iss | Realsecure Server Sensor | 6.5_win_sr3.7 | All | All | All |
| Application | Iss | Realsecure Server Sensor | 6.5_win_sr3.8 | All | All | All |
| Application | Iss | Realsecure Server Sensor | 6.5_win_sr3.9 | All | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.1 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.10 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.11 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.2 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.3 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.4 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.5 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.6 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.7 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.8 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.9 | All | All |
| Application | Iss | Realsecure Server Sensor | 6.0 | All | windows | All |
| Application | Iss | Realsecure Server Sensor | 6.0.1 | All | windows | All |
| Application | Iss | Realsecure Server Sensor | 6.0.1_win_sr1.1 | All | All | All |
| Application | Iss | Realsecure Server Sensor | 6.5 | All | windows | All |
| Application | Iss | Realsecure Server Sensor | 6.5 | sr3.2 | windows | All |
| Application | Iss | Realsecure Server Sensor | 6.5 | sr3.3 | windows | All |
| Application | Iss | Realsecure Server Sensor | 6.5_win_sr3.1 | All | All | All |
| Application | Iss | Realsecure Server Sensor | 6.5_win_sr3.10 | All | All | All |
| Application | Iss | Realsecure Server Sensor | 6.5_win_sr3.4 | All | All | All |
| Application | Iss | Realsecure Server Sensor | 6.5_win_sr3.5 | All | All | All |
| Application | Iss | Realsecure Server Sensor | 6.5_win_sr3.6 | All | All | All |
| Application | Iss | Realsecure Server Sensor | 6.5_win_sr3.7 | All | All | All |
| Application | Iss | Realsecure Server Sensor | 6.5_win_sr3.8 | All | All | All |
| Application | Iss | Realsecure Server Sensor | 6.5_win_sr3.9 | All | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.1 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.10 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.11 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.2 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.3 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.4 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.5 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.6 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.7 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.8 | All | All |
| Application | Iss | Realsecure Server Sensor | 7.0 | xpu22.9 | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Internet Security Systems Protocol Analysis Module ICQ Parsing Buffer Overflow Vulnerability | BID | www.securityfocus.com | Exploit, Patch, Vendor Advisory |
| US-CERT Vulnerability Note VU#947254 | CERT-VN | www.kb.cert.org | Patch, Third Party Advisory, US Government Resource |
| 'EEYE: Internet Security Systems PAM ICQ Server Response Processing Vulnerability' - MARC | BUGTRAQ | marc.info | |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| 20040318 Vulnerability in ICQ Parsing in ISS Products | ISS | xforce.iss.net | Patch, Vendor Advisory |
| Secunia - Advisories - ISS Multiple Products ICQ Server Response Processing Vulnerability | SECUNIA | secunia.com | |
| O-104 | CIAC | www.ciac.org | |
| 4355 | OSVDB | www.osvdb.org | |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| eEye Digital Security - Vulnerability Management Solutions | EEYE | www.eeye.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.