CVE-2004-2579

3 documents3 sources

Severity

7.5HIGH

EPSS

0.2%

top 54.11%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Novell Ichain

Timeline

PublishedDec 31

Latest updateApr 29

Description

ACLCHECK module in Novell iChain 2.3 allows attackers to bypass access control rules of an unspecified component via an unspecified attack vector involving a string that contains escape sequences represented with "overlong UTF-8 encoding."

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages1 packages

▶NVDnovell/ichain2.3

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-h7gq-ccp9-7hgx: ACLCHECK module in Novell iChain 2↗2022-04-29

▶

CVEList

CVE-2004-2579: ACLCHECK module in Novell iChain 2↗2005-11-28

▶