CyberSec.Space Logo
Back to CVE Browser

CVE-2004-1299

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1430%
EPSS Percentile23.97th
PublishedJan 10, 2005
Last ModifiedApr 16, 2026

Vulnerability Description

Buffer overflow in the get_attr function in html.c for vilistextum 2.6.6 allows remote attackers to execute arbitrary code via a crafted web page.

Affected Platforms (CPE)

πŸ“¦
Vilistextum

Vilistextum

= 2.6.6

References & Advisories

πŸ”— http://tigger.uic.edu/~jlongs2/holes/vilistextum.txt
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/18610
πŸ”— http://tigger.uic.edu/~jlongs2/holes/vilistextum.txt
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/18610

Related Vulnerabilities

CVE-2006-565710.0

Multiple off-by-one errors in src/text.c in Vilistextum before 2.6.9 have unknown impact and attack vectors.

CVE-2006-56565.0

Memory leak in the push_align function in src/util.c in Vilistextum before 2.6.9 allows remote attackers to cause a denial of serv...

CVE-2004-100610.0

Format string vulnerability in the log functions in dhcpd for dhcp 2.x allows remote DNS servers to execute arbitrary code via cer...

CVE-2004-041810.0

serve_notify in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle empty data lines, which may allow ...