338390 – test, please ignore (CVE-2004-0362)

Bug 338390 - test, please ignore (CVE-2004-0362)

Summary: test, please ignore (CVE-2004-0362)

Status:	RESOLVED INVALID

Alias:	None

Product:	Gentoo Security
Classification:	Unclassified
Component:	Vulnerabilities (show other bugs)
Hardware:	All Linux

Importance:	High normal (vote)
Assignee:	Gentoo Security

URL:
Whiteboard:	A4 [stable] wait
Keywords:

Depends on:
Blocks:

Reported:	2010-09-22 22:04 UTC by GLSAMaker/CVETool Bot
Modified:	2010-09-22 22:05 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description GLSAMaker/CVETool Bot gentoo-dev

2010-09-22 22:04:24 UTC

CVE-2004-0362 (http://nvd.nist.gov/nvd.cfm?cvename=CVE-2004-0362):
  Multiple stack-based buffer overflows in the ICQ parsing routines of the ISS
  Protocol Analysis Module (PAM) component, as used in various RealSecure,
  Proventia, and BlackICE products, allow remote attackers to execute
  arbitrary code via a SRV_MULTI response containing a SRV_USER_ONLINE
  response packet and a SRV_META_USER response packet with long (1) nickname,
  (2) firstname, (3) lastname, or (4) email address fields, as exploited by
  the Witty worm.



Testing, please ignore this bug. Sorry if it caused you any bugspam.