CVE-2004-0331

Dell OpenManage Web Server 3.4.0 - Buffer Overflow

Title source: llm

Description

Heap-based buffer overflow in Dell OpenManage Web Server 3.4.0 allows remote attackers to cause a denial of service (crash) via a HTTP POST with a long application variable.

Exploits (1)

metasploit WORKING POC

by aushack · rubypoc

https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/dos/http/dell_openmanage_post.rb

View Code ZIP pw:eip

References (4)

[Mailing List] http://marc.info/?l=bugtraq&m=107781539829143&w=2

[Various Sources] http://sh0dan.org/files/domadv.txt

[Patch, Vendor Advisory] http://www.securityfocus.com/bid/9750

[Third Party Advisory, VDB Entry] https://exchange.xforce.ibmcloud.com/vulnerabilities/15325

Scores

EPSS 0.6753

EPSS Percentile 98.6%

Details

Status published

Products (4)

dell/openmanage 3.2

dell/openmanage 3.4

dell/openmanage 3.7

dell/openmanage 3.7.1

Published Nov 23, 2004

Tracked Since Feb 18, 2026