Vulnerability CVE-2004-0903 - CERT Civis.Net

Vulnerability Name:

CVE-2004-0903 (CCN-17380)

Assigned:

2004-08-29

Published:

2004-08-29

Updated:

2017-10-11

Summary:

Stack-based buffer overflow in the writeGroup function in nsVCardObj.cpp for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to execute arbitrary code via malformed VCard attachments that are not properly handled when previewing a message.

CVSS v3 Severity:

10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: CCN
Type: Mozilla Bugzilla Bug 257314
stack based buffer overflow with vcards when previewing email message

Source: CONFIRM
Type: Vendor Advisory
http://bugzilla.mozilla.org/show_bug.cgi?id=257314

Source: MITRE
Type: CNA
CVE-2004-0903

Source: CCN
Type: Conectiva Linux Security Announcement CLSA-2004:877
New upstream for mozilla

Source: HP
Type: UNKNOWN
SSRT4826

Source: FEDORA
Type: UNKNOWN
FLSA:2089

Source: CCN
Type: RHSA-2004-486
mozilla security update

Source: GENTOO
Type: UNKNOWN
GLSA-200409-26

Source: CCN
Type: slackware-security Mailing List, Wed, 22 Sep 2004 13:39:12 -0700 (PDT)
[slackware-security] Mozilla (SSA:2004-266-03)

Source: CCN
Type: Sun Alert ID: 57701
Multiple Security Vulnerabilities in Mozilla

Source: CCN
Type: GLSA-200409-26
Mozilla, Firefox, Thunderbird, Epiphany: New releases fix vulnerabilities

Source: CCN
Type: US-CERT VU#414240
Mozilla Mail vulnerable to buffer overflow via writeGroup() function in nsVCardObj.cpp

Source: CERT-VN
Type: Third Party Advisory, US Government Resource
VU#414240

Source: CCN
Type: Mozilla Web site
Mozilla - Home of the Firefox web browser, Thunderbird and the Mozilla Suite

Source: CONFIRM
Type: UNKNOWN
http://www.mozilla.org/projects/security/known-vulnerabilities.html#mozilla1.7.3

Source: SUSE
Type: UNKNOWN
SUSE-SA:2004:036

Source: BID
Type: Vendor Advisory
11174

Source: CCN
Type: BID-11174
Mozilla Browser Vcard Handling Remote Buffer Overflow Vulnerability

Source: CERT
Type: US Government Resource
TA04-261A

Source: XF
Type: UNKNOWN
mozilla-netscape-nsvcardobj-bo(17380)

Source: XF
Type: UNKNOWN
mozilla-netscape-nsvcardobj-bo(17380)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:10873

Source: SUSE
Type: SUSE-SA:2004:036
mozilla: various vulnerabilities

Vulnerable Configuration:

Configuration 1:

cpe:/a:mozilla:mozilla:1.7:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.7.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.7.2:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:0.7:-:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:0.7.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:0.7.2:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:0.7.3:*:*:*:*:*:*:*

OR cpe:/o:conectiva:linux:9.0:*:*:*:*:*:*:*

OR cpe:/o:conectiva:linux:10.0:*:*:*:*:*:*:*

Configuration 2:

cpe:/o:redhat:enterprise_linux:2.1:*:advanced_server:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:advanced_server_ia64:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:enterprise_server:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:enterprise_server_ia64:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:workstation:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:workstation_ia64:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3.0:*:advanced_server:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3.0:*:enterprise_server:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3.0:*:workstation_server:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux_desktop:3.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:fedora_core:core_1.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:linux:7.3:*:*:*:*:*:*:*

OR cpe:/o:redhat:linux:7.3:*:i386:*:*:*:*:*

OR cpe:/o:redhat:linux:7.3:*:i686:*:*:*:*:*

OR cpe:/o:redhat:linux:9.0:*:i386:*:*:*:*:*

OR cpe:/o:redhat:linux_advanced_workstation:2.1:*:ia64:*:*:*:*:*

OR cpe:/o:redhat:linux_advanced_workstation:2.1:*:itanium_processor:*:*:*:*:*

OR cpe:/o:suse:suse_linux:1.0:*:desktop:*:*:*:*:*

OR cpe:/o:suse:suse_linux:8:*:enterprise_server:*:*:*:*:*

OR cpe:/o:suse:suse_linux:8.1:*:*:*:*:*:*:*

OR cpe:/o:suse:suse_linux:8.2:*:*:*:*:*:*:*

OR cpe:/o:suse:suse_linux:9.0:*:*:*:*:*:*:*

OR cpe:/o:suse:suse_linux:9.0:*:enterprise_server:*:*:*:*:*

OR cpe:/o:suse:suse_linux:9.0:*:x86_64:*:*:*:*:*

OR cpe:/o:suse:suse_linux:9.1:*:*:*:*:*:*:*

Configuration RedHat 1:

cpe:/o:redhat:enterprise_linux:*:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:mozilla:mozilla:1.0:rc1:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.0:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.0.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.2.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.3:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.4:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.3.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.6:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.7:rc3:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox:0.8:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox:0.9:rc:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.7:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.7.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox:0.9.2:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox:0.9.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox:0.9.3:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.7.2:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox:0.9:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:0.9.2:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.0.2:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.1:alpha:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.1:beta:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.2:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.2:alpha:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.2:beta:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.4.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.4.2:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.4.4:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.4:alpha:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.4:beta:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.5:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.5.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.5:alpha:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.5:rc1:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.5:rc2:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.6:alpha:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.6:beta:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.7:alpha:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.7:beta:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.7:rc1:*:*:*:*:*:*

OR cpe:/a:mozilla:mozilla:1.7:rc2:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:0.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:0.2:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:0.3:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:0.4:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:0.5:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:0.6:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:0.7:-:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:0.7.1:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:0.7.2:*:*:*:*:*:*:*

OR cpe:/a:mozilla:thunderbird:0.7.3:*:*:*:*:*:*:*

OR cpe:/a:mozilla:firefox:0.7:*:*:*:*:*:*:*

AND

cpe:/o:sun:solaris:8::sparc:*:*:*:*:*

OR cpe:/o:compaq:tru64:5.1a:*:*:*:*:*:*:*

OR cpe:/o:sun:solaris:9::sparc:*:*:*:*:*

OR cpe:/o:gentoo:linux:*:*:*:*:*:*:*:*

OR cpe:/o:suse:suse_linux:8.1:*:*:*:*:*:*:*

OR cpe:/o:suse:linux_enterprise_server:8:*:*:*:*:*:*:*

OR cpe:/o:slackware:slackware_linux:current:*:*:*:*:*:*:*

OR cpe:/o:compaq:tru64:5.1b:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:as:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:es:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:ws:*:*:*:*:*

OR cpe:/o:suse:suse_linux:8.2:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:2.1:*:aw:*:*:*:*:*

OR cpe:/o:conectiva:linux:9.0:*:*:*:*:*:*:*

OR cpe:/o:suse:suse_linux:9.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::ws:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::es:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::as:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:10.0:*:*:*:*:*:*:*

OR cpe:/o:suse:suse_linux:9.1:*:*:*:*:*:*:*

OR cpe:/o:redhat:enterprise_linux:3::desktop:*:*:*:*:*

OR cpe:/o:conectiva:linux:10:*:*:*:*:*:*:*

OR cpe:/o:slackware:slackware_linux:10.0:*:*:*:*:*:*:*

OR cpe:/o:redhat:linux_advanced_workstation:2.1::itanium:*:*:*:*:*

OR cpe:/o:mandrakesoft:mandrake_linux:10.0::amd64:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.opensuse.security:def:20040903	V	CVE-2004-0903	2015-11-16
oval:org.mitre.oval:def:10873	V	Stack-based buffer overflow in the writeGroup function in nsVCardObj.cpp for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to execute arbitrary code via malformed VCard attachments that are not properly handled when previewing a message.	2013-04-29
oval:com.redhat.rhsa:def:20040486	P	RHSA-2004:486: mozilla security update (Critical)	2004-09-30