{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2005-01-19T00:00:00", "descriptions": [{"lang": "en", "value": "Format string vulnerability in the SetBaseURL function in AtHoc toolbar allows remote attackers to execute arbitrary code via format string specifiers in an invalid URL that is recorded in the debug log."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-07-10T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "20050119 Multiple vulnerabilities in the AtHoc Toolbar (#NISR19012005c)", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=110616363415176&w=2"}, {"name": "11341", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/11341"}, {"name": "20041006 Patch available for high risk flaws in the AtHoc Toolbar", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://marc.info/?l=bugtraq&m=109710974324742&w=2"}, {"tags": ["x_refsource_MISC"], "url": "http://www.ngssoftware.com/advisories/athoc-01full.txt"}, {"name": "athoc-toolbar-format-string(17628)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17628"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2005-0188", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Format string vulnerability in the SetBaseURL function in AtHoc toolbar allows remote attackers to execute arbitrary code via format string specifiers in an invalid URL that is recorded in the debug log."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20050119 Multiple vulnerabilities in the AtHoc Toolbar (#NISR19012005c)", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=110616363415176&w=2"}, {"name": "11341", "refsource": "BID", "url": "http://www.securityfocus.com/bid/11341"}, {"name": "20041006 Patch available for high risk flaws in the AtHoc Toolbar", "refsource": "BUGTRAQ", "url": "http://marc.info/?l=bugtraq&m=109710974324742&w=2"}, {"name": "http://www.ngssoftware.com/advisories/athoc-01full.txt", "refsource": "MISC", "url": "http://www.ngssoftware.com/advisories/athoc-01full.txt"}, {"name": "athoc-toolbar-format-string(17628)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17628"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2005-0188", "datePublished": "2005-02-06T05:00:00", "dateReserved": "2005-01-28T00:00:00", "dateUpdated": "2017-07-10T14:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:athoc:athoc_toolbar:*:*:*:*:*:*:*:*", "matchCriteriaId": "520D2ACD-FFF3-46A2-BA9D-061638EA3E8D", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Format string vulnerability in the SetBaseURL function in AtHoc toolbar allows remote attackers to execute arbitrary code via format string specifiers in an invalid URL that is recorded in the debug log."}], "id": "CVE-2005-0188", "lastModified": "2017-07-11T01:32:07.890", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": true, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2004-10-06T04:00:00.000", "references": [{"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=109710974324742&w=2"}, {"source": "cve@mitre.org", "url": "http://marc.info/?l=bugtraq&m=110616363415176&w=2"}, {"source": "cve@mitre.org", "url": "http://www.ngssoftware.com/advisories/athoc-01full.txt"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/11341"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/17628"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}