Vulnerability Details CVE-2004-0262
Stack-based buffer overflow in The Palace 3.5 and earlier client allows remote attackers to execute arbitrary code via a link to a palace:// url followed by a long server address string.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.057
EPSS Ranking 90.0%
CVSS Severity
CVSS v2 Score 10.0
References
- http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0033.html
- http://marc.info/?l=bugtraq&m=107634556632195&w=2
- http://www.elitehaven.net/thepalace.txt
- http://www.securityfocus.com/bid/9602
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15074
- http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0033.html
- http://marc.info/?l=bugtraq&m=107634556632195&w=2
- http://www.elitehaven.net/thepalace.txt
- http://www.securityfocus.com/bid/9602
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15074
Products affected by CVE-2004-0262
-
cpe:2.3:a:the_palace:the_palace_client:3.5