Buffer Overflow Vulnerability in XDICT from 2002 to 2005
CVE-2004-1494

Currently unrated

Key Information:

Vendor: Kingsoft
Status: Xdict
Vendor: CVE Published:; 31 December 2004

What is CVE-2004-1494?

The XDICT application versions from 2002 to 2005 contain a buffer overflow vulnerability in the Screen Fetch option, allowing remote attackers to potentially disrupt service by consuming excessive CPU resources or causing the application to exit unexpectedly. An attacker may exploit this flaw by sending a specially crafted long string, which could lead to arbitrary code execution.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/17929

vdb-entryx_refsource_XF

http://marc.info/?l=bugtraq&m=109933696831725&w=2

mailing-listx_refsource_BUGTRAQ

http://lists.grok.org.uk/pipermail/full-disclosure/2004-N...

mailing-listx_refsource_FULLDISC

Timeline

Vulnerability Reserved
Feb 18, 2005
Vulnerability published
Dec 31, 2004

Kingsoft

What is CVE-2004-1494?

References

Timeline