VDB
CVE-2004-0368
CVE-2004-0368
PUBLISHED
CVSS 10 CRITICAL
Double free vulnerability in dtlogin in CDE on Solaris, HP-UX, and other operating systems allows remote attackers to execute arbitrary code via a crafted XDMCP packet.
EPSS 56.58% · 98.2th percentile
Risk Scores
CVSS 2.0
10
EPSS Score
56.58%
98.2th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | n/a |
| open_group | cde_common_desktop_environment | 1.0.1, 1.0.2, 1.1 |
| ibm | aix | 5.2, 4.3.3, 5.1 |
| xi_graphics | dextop | 2.1, 3.0 |
Timeline
- Mar 25, 2004 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 25, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Oct 1, 2023 EPSS Score
References
- cde-dtlogin-double-free(15581) vdb
- [Dailydave] 20040323 dtlogin advisory mailing-list
- 11210 third-party-advisory
- http://www.immunitysec.com/downloads/dtlogin.sxw.pdf url
- 57539 vendor-advisory
- 20040323 how much fun can you have with UDP? mailing-list
- 20040801-01-P vendor-advisory
- 11214 third-party-advisory
- 9958 vdb
- oval:org.mitre.oval:def:1436 vdb
- 101478 vendor-advisory
- HPSBUX01038 vendor-advisory
- 11495 third-party-advisory
- O-129 third-party-advisory
- 11614 third-party-advisory
- VU#179804 third-party-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2004-0368 advisory
- http://secunia.com/advisories/11210 url
- http://secunia.com/advisories/11214 url
- http://secunia.com/advisories/11495 url
…and 1 more