Vulnerability Description
Multiple buffer overflows in Sun Java System Web Proxy Server (formerly Sun ONE Proxy Server) 3.6 through 3.6 SP4 allow remote attackers to execute arbitrary code via unknown vectors, possibly CONNECT requests.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sun | Java System Web Proxy Server | 3.6 |
References
- http://secunia.com/advisories/13036/PatchVendor Advisory
- http://securitytracker.com/id?1012005PatchVendor Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-57606-1&searchclause=se
- http://www.auscert.org.au/render.html?it=4516
- http://www.ciac.org/ciac/bulletins/p-027.shtml
- http://www.kb.cert.org/vuls/id/964401US Government Resource
- http://www.osvdb.org/displayvuln.php?osvdb_id=11304PatchVendor Advisory
- http://www.pentest.co.uk/documents/ptl-2004-06.html
- http://www.securityfocus.com/bid/11566PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17920
- http://secunia.com/advisories/13036/PatchVendor Advisory
- http://securitytracker.com/id?1012005PatchVendor Advisory
- http://sunsolve.sun.com/search/document.do?assetkey=1-26-57606-1&searchclause=se
- http://www.auscert.org.au/render.html?it=4516
- http://www.ciac.org/ciac/bulletins/p-027.shtml
FAQ
What is CVE-2004-1350?
CVE-2004-1350 is a vulnerability with a CVSS score of 7.5 (HIGH). Multiple buffer overflows in Sun Java System Web Proxy Server (formerly Sun ONE Proxy Server) 3.6 through 3.6 SP4 allow remote attackers to execute arbitrary code via unknown vectors, possibly CONNECT...
How severe is CVE-2004-1350?
CVE-2004-1350 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-1350?
Check the references section above for vendor advisories and patch information. Affected products include: Sun Java System Web Proxy Server.