CyberSec.Space Logo
返回 CVE 浏览器

CVE-2004-2645

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0950%
EPSS Percentile44.24th
Published2004年12月31日
Last Modified2026年4月16日

Vulnerability Description

Unspecified vulnerability in ASN.1 Compiler (asn1c) before 0.9.7 has unknown impact and attack vectors when processing "CHOICE" types with "indefinite length structures."

Affected Platforms (CPE)

📦
Asn.1 Compiler

Asn.1 Compiler

= 0.9.4
📦
Asn.1 Compiler

Asn.1 Compiler

= 0.9.5
📦
Asn.1 Compiler

Asn.1 Compiler

= 0.9.6

References & Advisories

🔗 http://secunia.com/advisories/12794
🔗 http://securitytracker.com/id?1011622
🔗 http://sourceforge.net/project/shownotes.php?group_id=103893&release_id=274592
🔗 http://www.osvdb.org/10684
🔗 http://www.securityfocus.com/bid/11370
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/17696
🔗 http://secunia.com/advisories/12794
🔗 http://securitytracker.com/id?1011622

相关漏洞威胁

CVE-2004-08495.0

Integer overflow in the asn_decode_string() function defined in asn1.c in radiusd for GNU Radius 1.1 and 1.2 before 1.2.94, when c...

CVE-2004-100610.0

Format string vulnerability in the log functions in dhcpd for dhcp 2.x allows remote DNS servers to execute arbitrary code via cer...

CVE-2004-041810.0

serve_notify in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle empty data lines, which may allow ...

CVE-2004-090410.0

Integer overflow in the bitmap (BMP) decoder for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird...