Vulnerability Details CVE-2004-2579
ACLCHECK module in Novell iChain 2.3 allows attackers to bypass access control rules of an unspecified component via an unspecified attack vector involving a string that contains escape sequences represented with "overlong UTF-8 encoding."
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 46.0%
CVSS Severity
CVSS v2 Score 7.5
References
- http://secunia.com/advisories/12366
- http://securitytracker.com/id?1011074
- http://support.novell.com/cgi-bin/search/searchtid.cgi?2972080.htm
- http://www.osvdb.org/9266
- http://www.securityfocus.com/bid/11061
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17132
- http://secunia.com/advisories/12366
- http://securitytracker.com/id?1011074
- http://support.novell.com/cgi-bin/search/searchtid.cgi?2972080.htm
- http://www.osvdb.org/9266
- http://www.securityfocus.com/bid/11061
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17132