Vulnerability Details : CVE-2004-1595
Public exploit exists!
Buffer overflow in ShixxNote 6.net build 117 allows remote attackers to execute arbitrary code via a long font field.
Vulnerability category: OverflowExecute code
Products affected by CVE-2004-1595
- cpe:2.3:a:shixxnote:shixxnote:6.net:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2004-1595
48.12%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 98 %
Percentile, the proportion of vulnerabilities that are scored at or less
Metasploit modules for CVE-2004-1595
-
ShixxNOTE 6.net Font Field Overflow
Disclosure Date: 2004-10-04First seen: 2020-04-26exploit/windows/misc/shixxnote_fontThis module exploits a buffer overflow in ShixxNOTE 6.net. The vulnerability is caused due to boundary errors in the handling of font fields. Authors: - MC <mc@metasploit.com>
CVSS scores for CVE-2004-1595
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
Vendor statements for CVE-2004-1595
-
ShixxNOTE 2007-11-16Upgrade to the latest version of ShixxNOTE 6.net (released December 2006), available from the ShixxNOTE 6.net Web site. http://www.shixxnote.com
References for CVE-2004-1595
-
http://marc.info/?l=bugtraq&m=109778648232233&w=2
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/17705
-
http://www.securityfocus.com/bid/11409
ShixxNOTE 6.net Remote Buffer Overflow VulnerabilityExploit;Vendor Advisory
Jump to