CVE-2004-2003

DeleGate < 8.9.2 - Buffer Overflow via SSL Certificate Subject or Issuer Name

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2004-2003. PoCs published by Joel Eriksson.

AI-analyzed exploit summary This exploit demonstrates a buffer overflow in DeleGate's SSLway filter by crafting a malicious X.509 certificate with oversized OU fields. The PoC uses OpenSSL to generate a certificate that triggers the overflow in the ssl_prcert() function.

Description

Buffer overflow in the ssl_prcert function in the SSLway filter (sslway.c) for DeleGate 8.9.2 and earlier allows remote attackers to execute arbitrary code via a certificate with a long (1) subject or (2) issuer name field.

Exploits (1)

exploitdb WORKING POC VERIFIED
by Joel Eriksson · textdoslinux
https://www.exploit-db.com/exploits/24095

This exploit demonstrates a buffer overflow in DeleGate's SSLway filter by crafting a malicious X.509 certificate with oversized OU fields. The PoC uses OpenSSL to generate a certificate that triggers the overflow in the ssl_prcert() function.

Classification
Working Poc 90%
Attack Type
Rce
Complexity
Moderate
Reliability
Theoretical
Target: DeleGate (version not specified)
No auth needed
Prerequisites: OpenSSL installed · Ability to send crafted certificates to the target DeleGate server
mistral-large-3 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5
Core References
Exploit, Patch, Vendor Advisory third-party-advisory x_refsource_secunia
http://secunia.com/advisories/11569
Mailing List mailing-list x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=108386181021070&w=2
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://www.osvdb.org/5945
Exploit, Patch, Vendor Advisory vdb-entry x_refsource_bid
http://www.securityfocus.com/bid/10295
Third Party Advisory, VDB Entry vdb-entry x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/16078

Scores

EPSS 0.0655
EPSS Percentile 93.0%

Details

Status published
Products (13)
delegate/delegate 7.7.0
delegate/delegate 7.7.1
delegate/delegate 7.8.0
delegate/delegate 7.8.1
delegate/delegate 7.8.2
delegate/delegate 7.9.11
delegate/delegate 8.3.3
delegate/delegate 8.3.4
delegate/delegate 8.4.0
delegate/delegate 8.5.0
... and 3 more
Published May 06, 2004
Tracked Since Feb 18, 2026