Details of VAR-200412-0086

ID

VAR-200412-0086

CVE

CVE-2004-0498

TITLE

stonesoft of firewall engine Vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2004-000908

DESCRIPTION

The H.323 protocol agent in StoneSoft firewall engine 2.2.8 and earlier allows remote attackers to cause a denial of service (crash) via crafted H.323 packets. stonesoft of firewall engine Exists in unspecified vulnerabilities.None. There are vulnerabilities in the H.323 proxy protocol of StoneSoft Firewall Engine 2.2.8 and earlier versions

Trust: 1.71

sources: NVD: CVE-2004-0498 // JVNDB: JVNDB-2004-000908 // VULHUB: VHN-8928

AFFECTED PRODUCTS

vendor:	stonesoft	model:	firewall engine	scope:	lte	version:	2.2.8	Trust: 1.0
vendor:	stonesoft	model:	firewall engine	scope:	-	version:	-	Trust: 0.8
vendor:	stonesoft	model:	firewall engine	scope:	eq	version:	-	Trust: 0.8
vendor:	stonesoft	model:	firewall engine	scope:	lte	version:	2.2.8 and earlier	Trust: 0.8
vendor:	stonesoft	model:	firewall engine	scope:	eq	version:	2.2.8	Trust: 0.6

sources: JVNDB: JVNDB-2004-000908 // CNNVD: CNNVD-200412-338 // NVD: CVE-2004-0498

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2004-0498
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2004-0498
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-200412-338
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-8928
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2004-0498
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-8928
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

sources: VULHUB: VHN-8928 // JVNDB: JVNDB-2004-000908 // CNNVD: CNNVD-200412-338 // NVD: CVE-2004-0498

PROBLEMTYPE DATA

problemtype:	NVD-CWE-Other	Trust: 1.0
problemtype:	others (CWE-Other) [NVD evaluation ]	Trust: 0.8

sources: JVNDB: JVNDB-2004-000908 // NVD: CVE-2004-0498

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-200412-338

TYPE

unknown

Trust: 0.6

sources: CNNVD: CNNVD-200412-338

EXTERNAL IDS

db:	NVD	id:	CVE-2004-0498	Trust: 3.3
db:	JVNDB	id:	JVNDB-2004-000908	Trust: 0.8
db:	CNNVD	id:	CNNVD-200412-338	Trust: 0.7
db:	BID	id:	83159	Trust: 0.1
db:	VULHUB	id:	VHN-8928	Trust: 0.1

sources: VULHUB: VHN-8928 // JVNDB: JVNDB-2004-000908 // CNNVD: CNNVD-200412-338 // NVD: CVE-2004-0498

REFERENCES

url:	http://www.uniras.gov.uk/niscc/docs/re-20041026-00956.pdf?lang=en	Trust: 2.5
url:	http://www.stonesoft.com/support/security_advisories/6735.html	Trust: 1.7
url:	https://nvd.nist.gov/vuln/detail/cve-2004-0498	Trust: 0.8

sources: VULHUB: VHN-8928 // JVNDB: JVNDB-2004-000908 // CNNVD: CNNVD-200412-338 // NVD: CVE-2004-0498

SOURCES

db:	VULHUB	id:	VHN-8928
db:	JVNDB	id:	JVNDB-2004-000908
db:	CNNVD	id:	CNNVD-200412-338
db:	NVD	id:	CVE-2004-0498

LAST UPDATE DATE

2024-08-14T13:40:17.713000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-8928	date:	2008-09-05T00:00:00
db:	JVNDB	id:	JVNDB-2004-000908	date:	2024-06-04T08:57:00
db:	CNNVD	id:	CNNVD-200412-338	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2004-0498	date:	2008-09-05T20:38:35.127

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-8928	date:	2004-12-31T00:00:00
db:	JVNDB	id:	JVNDB-2004-000908	date:	2024-06-04T00:00:00
db:	CNNVD	id:	CNNVD-200412-338	date:	2004-12-31T00:00:00
db:	NVD	id:	CVE-2004-0498	date:	2004-12-31T05:00:00