Vulnerability Details : CVE-2004-2068
fetchnews in leafnode 1.9.47 and earlier allows remote attackers to cause a denial of service (process hang) via an empty NNTP news article with missing mandatory headers.
Vulnerability category: Denial of service
Products affected by CVE-2004-2068
- cpe:2.3:a:leafnode:leafnode:1.9.25:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.26:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.27:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.29:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.36:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.37:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.30:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.40:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.41:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.38:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.39:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.31:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.35:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.46:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.47:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.32:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.33:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.28:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.44:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.45:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.34:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.42:*:*:*:*:*:*:*
- cpe:2.3:a:leafnode:leafnode:1.9.43:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2004-2068
1.12%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 84 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2004-2068
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
5.0
|
MEDIUM | AV:N/AC:L/Au:N/C:N/I:N/A:P |
10.0
|
2.9
|
NIST |
References for CVE-2004-2068
Jump to