NVD Vulnerability Detail

CVE-2004-0234

Summary	Multiple stack-based buffer overflows in the get_header function in header.c for LHA 1.14, as used in products such as Barracuda Spam Firewall, allow remote attackers or local users to execute arbitrary code via long directory or file names in an LHA archive, which triggers the overflow when testing or extracting the archive.
Publication Date	Aug. 18, 2004, 1 p.m.
Registration Date	Jan. 29, 2021, 6 p.m.
Last Update	Oct. 11, 2017, 10:29 a.m.

CVSS2.0 : HIGH
Score	10.0
Vector	AV:N/AC:L/Au:N/C:C/I:C/A:C
攻撃元区分(AV)	ネットワーク
攻撃条件の複雑さ(AC)	低
攻撃前の認証要否(Au)	不要
機密性への影響(C)	高
完全性への影響(I)	高
可用性への影響(A)	高
Get all privileges.	はい
Get user privileges	いいえ
Get other privileges	いいえ
User operation required	いいえ

Affected software configurations

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:clearswift:mailsweeper:4.0:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.1:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.2:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.3:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.4:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.5:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.6:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.6_sp1:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.7:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.8:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.10:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.11:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.13:::::::*
cpe:2.3:a:f-secure:f-secure_anti-virus:4.51::linux_gateways:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.51::linux_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.51::linux_workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.52::linux_gateways:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.52::linux_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.52::linux_workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.60::samba_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.5::client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.41::mimesweeper:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.41::windows_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.41::workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.42::mimesweeper:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.42::windows_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.42::workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.52::client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.21::ms_exchange:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:2003:::::::*
cpe:2.3:a:f-secure:f-secure_anti-virus:2004:::::::*
cpe:2.3:a:f-secure:f-secure_for_firewalls:6.20:::::::*
cpe:2.3:a:f-secure:f-secure_internet_security:2003:::::::*
cpe:2.3:a:f-secure:f-secure_internet_security:2004:::::::*
cpe:2.3:a:f-secure:f-secure_personal_express:4.5:::::::*
cpe:2.3:a:f-secure:f-secure_personal_express:4.6:::::::*
cpe:2.3:a:f-secure:f-secure_personal_express:4.7:::::::*
cpe:2.3:a:f-secure:internet_gatekeeper:6.31:::::::*
cpe:2.3:a:f-secure:internet_gatekeeper:6.32:::::::*
cpe:2.3:a:rarlab:winrar:3.20:::::::*
cpe:2.3:a:redhat:lha:1.14i-9::i386:::::
cpe:2.3:a:sgi:propack:2.4:::::::*
cpe:2.3:a:sgi:propack:3.0:::::::*
cpe:2.3:a:stalker:cgpmcafee:3.2:::::::*
cpe:2.3:a:tsugio_okamoto:lha:1.14:::::::*
cpe:2.3:a:tsugio_okamoto:lha:1.15:::::::*
cpe:2.3:a:tsugio_okamoto:lha:1.17:::::::*
cpe:2.3:a:winzip:winzip:9.0:::::::*

Configuration2		or higher	or less	more than	less than
cpe:2.3:o:redhat:fedora_core:core_1.0:::::::*

Related information, measures and tools

No	URL	refsource	タグ
1	http://archives.neohapsis.com/archives/bugtraq/2006-04/0059.html	BUGTRAQ
2	http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000840	CONECTIVA
3	http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/020776.html	FULLDISC
4	http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/020778.html	FULLDISC
5	http://marc.info/?l=bugtraq&m=108422737918885&w=2	BUGTRAQ
6	http://secunia.com/advisories/19514	SECUNIA	Vendor Advisory
7	http://security.gentoo.org/glsa/glsa-200405-02.xml	GENTOO
8	http://securitytracker.com/id?1015866	SECTRACK
9	http://www.debian.org/security/2004/dsa-515	DEBIAN
10	http://www.guay-leroux.com/projects/barracuda-advisory-LHA.txt	MISC
11	http://www.osvdb.org/5753	OSVDB
12	http://www.osvdb.org/5754	OSVDB
13	http://www.redhat.com/archives/fedora-announce-list/2004-May/msg00005.html	FEDORA
14	http://www.redhat.com/support/errata/RHSA-2004-178.html	REDHAT
15	http://www.redhat.com/support/errata/RHSA-2004-179.html	REDHAT
16	http://www.securityfocus.com/bid/10243	BID	Exploit Patch Vendor Advisory
17	http://www.vupen.com/english/advisories/2006/1220	VUPEN	Vendor Advisory
18	https://bugzilla.fedora.us/show_bug.cgi?id=1833	FEDORA
19	https://exchange.xforce.ibmcloud.com/vulnerabilities/16012	XF
20	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A977	OVAL
21	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9881	OVAL

Common Vulnerabilities List

No	CWE	Name	URL
1	CWE-119	バッファエラー	https://cwe.mitre.org/data/definitions/118.html

Configuration1	or higher	or less	more than	less than
cpe:2.3:a:clearswift:mailsweeper:4.0:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.1:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.2:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.3:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.4:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.5:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.6:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.6_sp1:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.7:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.8:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.10:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.11:::::::*
cpe:2.3:a:clearswift:mailsweeper:4.3.13:::::::*
cpe:2.3:a:f-secure:f-secure_anti-virus:4.51::linux_gateways:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.51::linux_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.51::linux_workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.52::linux_gateways:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.52::linux_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.52::linux_workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:4.60::samba_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.5::client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.41::mimesweeper:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.41::windows_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.41::workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.42::mimesweeper:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.42::windows_servers:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.42::workstations:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:5.52::client_security:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:6.21::ms_exchange:::::
cpe:2.3:a:f-secure:f-secure_anti-virus:2003:::::::*
cpe:2.3:a:f-secure:f-secure_anti-virus:2004:::::::*
cpe:2.3:a:f-secure:f-secure_for_firewalls:6.20:::::::*
cpe:2.3:a:f-secure:f-secure_internet_security:2003:::::::*
cpe:2.3:a:f-secure:f-secure_internet_security:2004:::::::*
cpe:2.3:a:f-secure:f-secure_personal_express:4.5:::::::*
cpe:2.3:a:f-secure:f-secure_personal_express:4.6:::::::*
cpe:2.3:a:f-secure:f-secure_personal_express:4.7:::::::*
cpe:2.3:a:f-secure:internet_gatekeeper:6.31:::::::*
cpe:2.3:a:f-secure:internet_gatekeeper:6.32:::::::*
cpe:2.3:a:rarlab:winrar:3.20:::::::*
cpe:2.3:a:redhat:lha:1.14i-9::i386:::::
cpe:2.3:a:sgi:propack:2.4:::::::*
cpe:2.3:a:sgi:propack:3.0:::::::*
cpe:2.3:a:stalker:cgpmcafee:3.2:::::::*
cpe:2.3:a:tsugio_okamoto:lha:1.14:::::::*
cpe:2.3:a:tsugio_okamoto:lha:1.15:::::::*
cpe:2.3:a:tsugio_okamoto:lha:1.17:::::::*
cpe:2.3:a:winzip:winzip:9.0:::::::*