cbcvebase.
CVE-2004-2003
published 2004-05-06

CVE-2004-2003: Buffer overflow in the ssl_prcert function in the SSLway filter (sslway.c) for DeleGate 8.9.2 and earlier allows remote attackers to execute arbitrary code via…

PriorityP336high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
6.55%
93.0th percentile
Buffer overflow in the ssl_prcert function in the SSLway filter (sslway.c) for DeleGate 8.9.2 and earlier allows remote attackers to execute arbitrary code via a certificate with a long (1) subject or (2) issuer name field.

Affected

13 ranges
VendorProductVersion rangeFixed in
delegatedelegate
delegatedelegate
delegatedelegate
delegatedelegate
delegatedelegate
delegatedelegate
delegatedelegate
delegatedelegate
delegatedelegate
delegatedelegate
delegatedelegate
delegatedelegate
delegatedelegate

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.