CVE-2004-0193
HIGH
7.5
CVSS Severity Score
Vulnerability Description
Heap-based buffer overflow in the ISS Protocol Analysis Module (PAM), as used in certain versions of RealSecure Network 7.0 and Server Sensor 7.0, Proventia A, G, and M Series, RealSecure Desktop 7.0 and 3.6, RealSecure Guard 3.6, RealSecure Sentry 3.6, BlackICE PC Protection 3.6, and BlackICE Server Protection 3.6, allows remote attackers to execute arbitrary code via an SMB packet containing an authentication request with a long username.
Affected Platforms (CPE)
📦
Iss
Blackice Agent Server
= 3.6eca📦
Iss
Blackice Pc Protection
= 3.6cbd📦
Iss
Blackice Server Protection
= 3.6cbz📦
Iss
Realsecure Desktop
= 3.6eca📦
Iss
Realsecure Desktop
= 3.6ecf📦
Iss
Realsecure Desktop
= 7.0ebg📦
Iss
Realsecure Desktop
= 7.0epk📦
Iss
Realsecure Guard
= 3.6ecb📦
Iss
Realsecure Network
= 7.0📦
Iss
Realsecure Sentry
= 3.6ecf📦
Iss
Realsecure Server Sensor
= 7.0🔌
Iss
Proventia A Series Xpu
= 20.15🔌
Iss
Proventia G Series Xpu
= 22.3🔌
Iss