Vulnerability Description
Stack-based buffer overflow in eZnet.exe, as used in eZ (a) eZphotoshare, (b) eZmeeting, (c) eZnetwork, and (d) eZshare allows remote attackers to cause a denial of service (crash) or execute arbitrary code, as demonstrated via (1) a long GET request and (2) a long operation or autologin parameter to SwEzModule.dll.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ezmeeting | Ezmeeting | 3.3 |
Related Weaknesses (CWE)
References
- http://marc.info/?l=bugtraq&m=107090390002654&w=2
- http://seclists.org/bugtraq/2003/Dec/0195.html
- http://securitytracker.com/id?1008412Exploit
- http://www.governmentsecurity.org/archive/t5390.html
- https://www.exploit-db.com/exploits/133
- http://marc.info/?l=bugtraq&m=107090390002654&w=2
- http://seclists.org/bugtraq/2003/Dec/0195.html
- http://securitytracker.com/id?1008412Exploit
- http://www.governmentsecurity.org/archive/t5390.html
- https://www.exploit-db.com/exploits/133
FAQ
What is CVE-2003-1339?
CVE-2003-1339 is a vulnerability with a CVSS score of 10.0 (HIGH). Stack-based buffer overflow in eZnet.exe, as used in eZ (a) eZphotoshare, (b) eZmeeting, (c) eZnetwork, and (d) eZshare allows remote attackers to cause a denial of service (crash) or execute arbitrar...
How severe is CVE-2003-1339?
CVE-2003-1339 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-1339?
Check the references section above for vendor advisories and patch information. Affected products include: Ezmeeting Ezmeeting.