CVE-2004-1168 — HIGH (10.0)

Vulnerability Description

Stack-based buffer overflow in the WebDav handler in MaxDB WebTools 7.5.00.18 and earlier allows remote attackers to execute arbitrary code via a long Overwrite header.

CVSS Score

10.0

HIGH

AV:N/AC:L/Au:N/C:C/I:C/A:C

Confidentiality

COMPLETE

Integrity

COMPLETE

Availability

COMPLETE

Affected Products

Vendor	Product	Versions
Mysql	Maxdb	7.5.00.08

References

http://marc.info/?l=bugtraq&m=110244542000340&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/18386
http://marc.info/?l=bugtraq&m=110244542000340&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/18386

FAQ

What is CVE-2004-1168?

CVE-2004-1168 is a vulnerability with a CVSS score of 10.0 (HIGH). Stack-based buffer overflow in the WebDav handler in MaxDB WebTools 7.5.00.18 and earlier allows remote attackers to execute arbitrary code via a long Overwrite header.

How severe is CVE-2004-1168?

CVE-2004-1168 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2004-1168?

Check the references section above for vendor advisories and patch information. Affected products include: Mysql Maxdb.