Vulnerabilities > CVE-2004-2609 - Unspecified vulnerability in Symantec Powerquest Deploycenter 5.5
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
The stuffit.com executable on Symantec PowerQuest DeployCenter 5.5 boot disks allows local users to obtain sensitive information (an unencrypted password for a Windows domain account) via four "stuffit /f:stuffit.dat" invocations, possibly due to a buffer overflow.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://archives.neohapsis.com/archives/fulldisclosure/2004-08/1180.html
- http://archives.neohapsis.com/archives/fulldisclosure/2004-08/1180.html
- http://securitytracker.com/id?1011081
- http://securitytracker.com/id?1011081
- http://www.osvdb.org/9276
- http://www.osvdb.org/9276
- http://www.securityfocus.com/bid/11068
- http://www.securityfocus.com/bid/11068
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17147
- https://exchange.xforce.ibmcloud.com/vulnerabilities/17147