Unrated severityNVD Advisory· Published Mar 15, 2004· Updated Apr 16, 2026

CVE-2004-0193

Description

Heap-based buffer overflow in the ISS Protocol Analysis Module (PAM), as used in certain versions of RealSecure Network 7.0 and Server Sensor 7.0, Proventia A, G, and M Series, RealSecure Desktop 7.0 and 3.6, RealSecure Guard 3.6, RealSecure Sentry 3.6, BlackICE PC Protection 3.6, and BlackICE Server Protection 3.6, allows remote attackers to execute arbitrary code via an SMB packet containing an authentication request with a long username.

Affected products

Iss/Blackice Agent Server
cpe:2.3:a:iss:blackice_agent_server:3.6eca:*:*:*:*:*:*:*
Iss/Blackice Pc Protection
cpe:2.3:a:iss:blackice_pc_protection:3.6cbd:*:*:*:*:*:*:*
Iss/Blackice Server Protection
cpe:2.3:a:iss:blackice_server_protection:3.6cbz:*:*:*:*:*:*:*
Iss/Realsecure Desktop4 versions
cpe:2.3:a:iss:realsecure_desktop:3.6eca:*:*:*:*:*:*:*+ 3 more
- cpe:2.3:a:iss:realsecure_desktop:3.6eca:*:*:*:*:*:*:*
- cpe:2.3:a:iss:realsecure_desktop:3.6ecf:*:*:*:*:*:*:*
- cpe:2.3:a:iss:realsecure_desktop:7.0ebg:*:*:*:*:*:*:*
- cpe:2.3:a:iss:realsecure_desktop:7.0epk:*:*:*:*:*:*:*
Iss/Realsecure Guard
cpe:2.3:a:iss:realsecure_guard:3.6ecb:*:*:*:*:*:*:*
Iss/Realsecure Network
cpe:2.3:a:iss:realsecure_network:7.0:xpu_20.15:*:*:*:*:*:*
Iss/Realsecure Sentry
cpe:2.3:a:iss:realsecure_sentry:3.6ecf:*:*:*:*:*:*:*
Iss/Realsecure Server Sensor
cpe:2.3:a:iss:realsecure_server_sensor:7.0:xpu20.16:*:*:*:*:*:*
Iss/Proventia A Series Xpu
cpe:2.3:h:iss:proventia_a_series_xpu:20.15:*:*:*:*:*:*:*
Iss/Proventia G Series Xpu
cpe:2.3:h:iss:proventia_g_series_xpu:22.3:*:*:*:*:*:*:*
Iss/Proventia M Series Xpu
cpe:2.3:h:iss:proventia_m_series_xpu:1.30:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.kb.cert.org/vuls/id/150326nvdPatchThird Party AdvisoryUS Government Resource
xforce.iss.net/xforce/alerts/id/165nvdPatchVendor Advisory
www.eeye.com/html/Research/Upcoming/20040213.htmlnvdVendor Advisory
marc.infonvd
secunia.com/advisories/10988nvd
www.eeye.com/html/Research/Advisories/AD20040226.htmlnvd
www.osvdb.org/4072nvd
www.securityfocus.com/bid/9752nvd
exchange.xforce.ibmcloud.com/vulnerabilities/15207nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.024
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000