Vulnerability-Lookup

CVE-2004-0494 (GCVE-0-2004-0494)

Vulnerability from cvelistv5 – Published: 2004-08-05 04:00 – Updated: 2024-08-08 00:17

Summary

Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI.

Severity ?

No CVSS data available.

CWE

Assigner

mitre

References

URL

FKIE_CVE-2004-0494

Vulnerability from fkie_nvd - Published: 2004-11-23 05:00 - Updated: 2025-04-03 01:03

Severity ?

Summary

Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI.

References

URL	Tags
cve@mitre.org	http://rpmfind.net/linux/RPM/suse/9.3/i386/suse/i586/gnome-vfs-1.0.5-816.2.i586.html
cve@mitre.org	http://www.redhat.com/support/errata/RHSA-2004-373.html	Patch, Vendor Advisory
cve@mitre.org	https://bugzilla.fedora.us/show_bug.cgi?id=1944
cve@mitre.org	https://exchange.xforce.ibmcloud.com/vulnerabilities/16897
cve@mitre.org	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9854
af854a3a-2127-422b-91ae-364da2661108	http://rpmfind.net/linux/RPM/suse/9.3/i386/suse/i586/gnome-vfs-1.0.5-816.2.i586.html
af854a3a-2127-422b-91ae-364da2661108	http://www.redhat.com/support/errata/RHSA-2004-373.html	Patch, Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://bugzilla.fedora.us/show_bug.cgi?id=1944
af854a3a-2127-422b-91ae-364da2661108	https://exchange.xforce.ibmcloud.com/vulnerabilities/16897
af854a3a-2127-422b-91ae-364da2661108	https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9854

Impacted products

Vendor	Product	Version
avaya	cvlan	*
redhat	enterprise_linux	2.1
redhat	enterprise_linux	2.1
redhat	enterprise_linux	2.1
redhat	enterprise_linux	2.1
redhat	enterprise_linux	2.1
redhat	enterprise_linux	2.1
redhat	enterprise_linux	3.0
redhat	enterprise_linux	3.0
redhat	enterprise_linux	3.0
redhat	enterprise_linux_desktop	3.0
redhat	linux_advanced_workstation	2.1
redhat	linux_advanced_workstation	2.1

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:avaya:cvlan:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FE82341-3E73-4F5B-BD9E-06C83F22E831",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    },
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:advanced_server:*:*:*:*:*",
              "matchCriteriaId": "2641EE56-6F9D-400B-B456-877F4DA79B10",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:advanced_server_ia64:*:*:*:*:*",
              "matchCriteriaId": "A4A9461E-C117-42EC-9F14-DF2A82BA7C5D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:enterprise_server:*:*:*:*:*",
              "matchCriteriaId": "E0B458EA-495E-40FA-9379-C03757F7B1EE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:enterprise_server_ia64:*:*:*:*:*",
              "matchCriteriaId": "409E324A-C040-494F-A026-9DCAE01C07F8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:workstation:*:*:*:*:*",
              "matchCriteriaId": "1728AB5D-55A9-46B0-A412-6F7263CAEB5A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:workstation_ia64:*:*:*:*:*",
              "matchCriteriaId": "6474B775-C893-491F-A074-802AFB1FEDD8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:advanced_server:*:*:*:*:*",
              "matchCriteriaId": "78B46FFA-5B09-473E-AD33-3DB18BD0DAFE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:enterprise_server:*:*:*:*:*",
              "matchCriteriaId": "EC79FF22-2664-4C40-B0B3-6D23B5F45162",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:workstation_server:*:*:*:*:*",
              "matchCriteriaId": "0EFE2E73-9536-41A9-B83B-0A06B54857F4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:3.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "AF3BBBC3-3EF9-4E24-9DE2-627E172A5473",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:linux_advanced_workstation:2.1:*:ia64:*:*:*:*:*",
              "matchCriteriaId": "84A50ED3-FD0D-4038-B3E7-CC65D166C968",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:redhat:linux_advanced_workstation:2.1:*:itanium_processor:*:*:*:*:*",
              "matchCriteriaId": "777F9EC0-2919-45CA-BFF8-78A02537C513",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI."
    }
  ],
  "id": "CVE-2004-0494",
  "lastModified": "2025-04-03T01:03:51.193",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 7.5,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.4,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": true,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2004-11-23T05:00:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://rpmfind.net/linux/RPM/suse/9.3/i386/suse/i586/gnome-vfs-1.0.5-816.2.i586.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2004-373.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://bugzilla.fedora.us/show_bug.cgi?id=1944"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16897"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9854"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://rpmfind.net/linux/RPM/suse/9.3/i386/suse/i586/gnome-vfs-1.0.5-816.2.i586.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch",
        "Vendor Advisory"
      ],
      "url": "http://www.redhat.com/support/errata/RHSA-2004-373.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://bugzilla.fedora.us/show_bug.cgi?id=1944"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16897"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9854"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GSD-2004-0494

Vulnerability from gsd - Updated: 2023-12-13 01:22

Details

Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI.

Aliases

CVE-2004-0494

Aliases

CVE-2004-0494

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2004-0494",
    "description": "Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI.",
    "id": "GSD-2004-0494",
    "references": [
      "https://www.suse.com/security/cve/CVE-2004-0494.html",
      "https://access.redhat.com/errata/RHSA-2004:464",
      "https://access.redhat.com/errata/RHSA-2004:373"
    ]
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2004-0494"
      ],
      "details": "Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI.",
      "id": "GSD-2004-0494",
      "modified": "2023-12-13T01:22:54.041766Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "cve@mitre.org",
        "ID": "CVE-2004-0494",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "FLSA:1944",
            "refsource": "FEDORA",
            "url": "https://bugzilla.fedora.us/show_bug.cgi?id=1944"
          },
          {
            "name": "oval:org.mitre.oval:def:9854",
            "refsource": "OVAL",
            "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9854"
          },
          {
            "name": "RHSA-2004:373",
            "refsource": "REDHAT",
            "url": "http://www.redhat.com/support/errata/RHSA-2004-373.html"
          },
          {
            "name": "gnome-vfs-extfs-gain-access(16897)",
            "refsource": "XF",
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16897"
          },
          {
            "name": "http://rpmfind.net/linux/RPM/suse/9.3/i386/suse/i586/gnome-vfs-1.0.5-816.2.i586.html",
            "refsource": "CONFIRM",
            "url": "http://rpmfind.net/linux/RPM/suse/9.3/i386/suse/i586/gnome-vfs-1.0.5-816.2.i586.html"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:avaya:cvlan:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          },
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:workstation_ia64:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:advanced_server:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:advanced_server_ia64:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:enterprise_server:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:3.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:linux_advanced_workstation:2.1:*:ia64:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:advanced_server:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:enterprise_server:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:3.0:*:workstation_server:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:enterprise_server_ia64:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux:2.1:*:workstation:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:redhat:linux_advanced_workstation:2.1:*:itanium_processor:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2004-0494"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-Other"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "RHSA-2004:373",
              "refsource": "REDHAT",
              "tags": [
                "Patch",
                "Vendor Advisory"
              ],
              "url": "http://www.redhat.com/support/errata/RHSA-2004-373.html"
            },
            {
              "name": "FLSA:1944",
              "refsource": "FEDORA",
              "tags": [],
              "url": "https://bugzilla.fedora.us/show_bug.cgi?id=1944"
            },
            {
              "name": "http://rpmfind.net/linux/RPM/suse/9.3/i386/suse/i586/gnome-vfs-1.0.5-816.2.i586.html",
              "refsource": "CONFIRM",
              "tags": [],
              "url": "http://rpmfind.net/linux/RPM/suse/9.3/i386/suse/i586/gnome-vfs-1.0.5-816.2.i586.html"
            },
            {
              "name": "gnome-vfs-extfs-gain-access(16897)",
              "refsource": "XF",
              "tags": [],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16897"
            },
            {
              "name": "oval:org.mitre.oval:def:9854",
              "refsource": "OVAL",
              "tags": [],
              "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9854"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "PARTIAL",
            "baseScore": 7.5,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "PARTIAL",
            "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 6.4,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": true,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-10-11T01:29Z",
      "publishedDate": "2004-11-23T05:00Z"
    }
  }
}

GHSA-7WFM-R8JM-499H

Vulnerability from github – Published: 2022-04-29 02:57 – Updated: 2022-04-29 02:57

Details

Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI.

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2004-0494"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2004-11-23T05:00:00Z",
    "severity": "HIGH"
  },
  "details": "Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI.",
  "id": "GHSA-7wfm-r8jm-499h",
  "modified": "2022-04-29T02:57:49Z",
  "published": "2022-04-29T02:57:49Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0494"
    },
    {
      "type": "WEB",
      "url": "https://bugzilla.fedora.us/show_bug.cgi?id=1944"
    },
    {
      "type": "WEB",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16897"
    },
    {
      "type": "WEB",
      "url": "https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A9854"
    },
    {
      "type": "WEB",
      "url": "http://rpmfind.net/linux/RPM/suse/9.3/i386/suse/i586/gnome-vfs-1.0.5-816.2.i586.html"
    },
    {
      "type": "WEB",
      "url": "http://www.redhat.com/support/errata/RHSA-2004-373.html"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

RHSA-2004:373

Vulnerability from csaf_redhat - Published: 2004-08-04 13:47 - Updated: 2025-11-21 17:27

Summary

Red Hat Security Advisory: gnome-vfs security update

Notes

Topic

Updated GNOME VFS packages that remove potential extfs-related vulnerabilities are now available.

Details

GNOME VFS is the GNOME virtual file system. It provides a modular architecture and ships with several modules that implement support for file systems, HTTP, FTP, and others. The extfs backends make it possible to implement file systems for GNOME VFS using scripts. Flaws have been found in several of the GNOME VFS extfs backend scripts. Red Hat Enterprise Linux ships with vulnerable scripts, but they are not used by default. An attacker who is able to influence a user to open a specially-crafted URI using gnome-vfs could perform actions as that user. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0494 to this issue. Users of Red Hat Enterprise Linux should upgrade to these updated packages, which remove these unused scripts.

This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Low"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "Updated GNOME VFS packages that remove potential extfs-related\nvulnerabilities are now available.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "GNOME VFS is the GNOME virtual file system. It provides a modular\narchitecture and ships with several modules that implement support for file\nsystems, HTTP, FTP, and others.  The extfs backends make it possible to\nimplement file systems for GNOME VFS using scripts.\n\nFlaws have been found in several of the GNOME VFS extfs backend scripts. \nRed Hat Enterprise Linux ships with vulnerable scripts, but they are not\nused by default.  An attacker who is able to influence a user to open a\nspecially-crafted URI using gnome-vfs could perform actions as that user.\nThe Common Vulnerabilities and Exposures project (cve.mitre.org) has\nassigned the name CAN-2004-0494 to this issue.\n\nUsers of Red Hat Enterprise Linux should upgrade to these updated packages,\nwhich remove these unused scripts.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2004:373",
        "url": "https://access.redhat.com/errata/RHSA-2004:373"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#low",
        "url": "https://access.redhat.com/security/updates/classification/#low"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2004/rhsa-2004_373.json"
      }
    ],
    "title": "Red Hat Security Advisory: gnome-vfs security update",
    "tracking": {
      "current_release_date": "2025-11-21T17:27:32+00:00",
      "generator": {
        "date": "2025-11-21T17:27:32+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2004:373",
      "initial_release_date": "2004-08-04T13:47:00+00:00",
      "revision_history": [
        {
          "date": "2004-08-04T13:47:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2004-08-04T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:27:32+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux AS version 3",
                  "product_id": "3AS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::as"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Desktop version 3",
                "product": {
                  "name": "Red Hat Desktop version 3",
                  "product_id": "3Desktop",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::desktop"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux ES version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux ES version 3",
                  "product_id": "3ES",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::es"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux WS version 3",
                "product": {
                  "name": "Red Hat Enterprise Linux WS version 3",
                  "product_id": "3WS",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:3::ws"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnome-vfs2-0:2.2.5-2E.1.ia64",
                "product": {
                  "name": "gnome-vfs2-0:2.2.5-2E.1.ia64",
                  "product_id": "gnome-vfs2-0:2.2.5-2E.1.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnome-vfs2@2.2.5-2E.1?arch=ia64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64",
                "product": {
                  "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64",
                  "product_id": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnome-vfs2-debuginfo@2.2.5-2E.1?arch=ia64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnome-vfs2-devel-0:2.2.5-2E.1.ia64",
                "product": {
                  "name": "gnome-vfs2-devel-0:2.2.5-2E.1.ia64",
                  "product_id": "gnome-vfs2-devel-0:2.2.5-2E.1.ia64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnome-vfs2-devel@2.2.5-2E.1?arch=ia64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ia64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnome-vfs2-0:2.2.5-2E.1.src",
                "product": {
                  "name": "gnome-vfs2-0:2.2.5-2E.1.src",
                  "product_id": "gnome-vfs2-0:2.2.5-2E.1.src",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnome-vfs2@2.2.5-2E.1?arch=src"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "src"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnome-vfs2-0:2.2.5-2E.1.x86_64",
                "product": {
                  "name": "gnome-vfs2-0:2.2.5-2E.1.x86_64",
                  "product_id": "gnome-vfs2-0:2.2.5-2E.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnome-vfs2@2.2.5-2E.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64",
                "product": {
                  "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64",
                  "product_id": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnome-vfs2-debuginfo@2.2.5-2E.1?arch=x86_64"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnome-vfs2-devel-0:2.2.5-2E.1.x86_64",
                "product": {
                  "name": "gnome-vfs2-devel-0:2.2.5-2E.1.x86_64",
                  "product_id": "gnome-vfs2-devel-0:2.2.5-2E.1.x86_64",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnome-vfs2-devel@2.2.5-2E.1?arch=x86_64"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "x86_64"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnome-vfs2-0:2.2.5-2E.1.i386",
                "product": {
                  "name": "gnome-vfs2-0:2.2.5-2E.1.i386",
                  "product_id": "gnome-vfs2-0:2.2.5-2E.1.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnome-vfs2@2.2.5-2E.1?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386",
                "product": {
                  "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386",
                  "product_id": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnome-vfs2-debuginfo@2.2.5-2E.1?arch=i386"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnome-vfs2-devel-0:2.2.5-2E.1.i386",
                "product": {
                  "name": "gnome-vfs2-devel-0:2.2.5-2E.1.i386",
                  "product_id": "gnome-vfs2-devel-0:2.2.5-2E.1.i386",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnome-vfs2-devel@2.2.5-2E.1?arch=i386"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "i386"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnome-vfs2-0:2.2.5-2E.1.ppc",
                "product": {
                  "name": "gnome-vfs2-0:2.2.5-2E.1.ppc",
                  "product_id": "gnome-vfs2-0:2.2.5-2E.1.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnome-vfs2@2.2.5-2E.1?arch=ppc"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc",
                "product": {
                  "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc",
                  "product_id": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnome-vfs2-debuginfo@2.2.5-2E.1?arch=ppc"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnome-vfs2-devel-0:2.2.5-2E.1.ppc",
                "product": {
                  "name": "gnome-vfs2-devel-0:2.2.5-2E.1.ppc",
                  "product_id": "gnome-vfs2-devel-0:2.2.5-2E.1.ppc",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnome-vfs2-devel@2.2.5-2E.1?arch=ppc"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "ppc"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnome-vfs2-0:2.2.5-2E.1.s390x",
                "product": {
                  "name": "gnome-vfs2-0:2.2.5-2E.1.s390x",
                  "product_id": "gnome-vfs2-0:2.2.5-2E.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnome-vfs2@2.2.5-2E.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x",
                "product": {
                  "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x",
                  "product_id": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnome-vfs2-debuginfo@2.2.5-2E.1?arch=s390x"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnome-vfs2-devel-0:2.2.5-2E.1.s390x",
                "product": {
                  "name": "gnome-vfs2-devel-0:2.2.5-2E.1.s390x",
                  "product_id": "gnome-vfs2-devel-0:2.2.5-2E.1.s390x",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnome-vfs2-devel@2.2.5-2E.1?arch=s390x"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390x"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "gnome-vfs2-0:2.2.5-2E.1.s390",
                "product": {
                  "name": "gnome-vfs2-0:2.2.5-2E.1.s390",
                  "product_id": "gnome-vfs2-0:2.2.5-2E.1.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnome-vfs2@2.2.5-2E.1?arch=s390"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390",
                "product": {
                  "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390",
                  "product_id": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnome-vfs2-debuginfo@2.2.5-2E.1?arch=s390"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "gnome-vfs2-devel-0:2.2.5-2E.1.s390",
                "product": {
                  "name": "gnome-vfs2-devel-0:2.2.5-2E.1.s390",
                  "product_id": "gnome-vfs2-devel-0:2.2.5-2E.1.s390",
                  "product_identification_helper": {
                    "purl": "pkg:rpm/redhat/gnome-vfs2-devel@2.2.5-2E.1?arch=s390"
                  }
                }
              }
            ],
            "category": "architecture",
            "name": "s390"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ],
    "relationships": [
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gnome-vfs2-0:2.2.5-2E.1.i386"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gnome-vfs2-0:2.2.5-2E.1.ia64"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gnome-vfs2-0:2.2.5-2E.1.ppc"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gnome-vfs2-0:2.2.5-2E.1.s390"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gnome-vfs2-0:2.2.5-2E.1.s390x"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.src as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gnome-vfs2-0:2.2.5-2E.1.src"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.src",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gnome-vfs2-0:2.2.5-2E.1.x86_64"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.i386 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gnome-vfs2-devel-0:2.2.5-2E.1.i386"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.i386",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.ia64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gnome-vfs2-devel-0:2.2.5-2E.1.ia64"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.ia64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.ppc as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gnome-vfs2-devel-0:2.2.5-2E.1.ppc"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.ppc",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.s390 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gnome-vfs2-devel-0:2.2.5-2E.1.s390"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.s390",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.s390x as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gnome-vfs2-devel-0:2.2.5-2E.1.s390x"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.s390x",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.x86_64 as a component of Red Hat Enterprise Linux AS version 3",
          "product_id": "3AS:gnome-vfs2-devel-0:2.2.5-2E.1.x86_64"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.x86_64",
        "relates_to_product_reference": "3AS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gnome-vfs2-0:2.2.5-2E.1.i386"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gnome-vfs2-0:2.2.5-2E.1.ia64"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gnome-vfs2-0:2.2.5-2E.1.ppc"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gnome-vfs2-0:2.2.5-2E.1.s390"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gnome-vfs2-0:2.2.5-2E.1.s390x"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.src as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gnome-vfs2-0:2.2.5-2E.1.src"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.src",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gnome-vfs2-0:2.2.5-2E.1.x86_64"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.i386 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gnome-vfs2-devel-0:2.2.5-2E.1.i386"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.i386",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.ia64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gnome-vfs2-devel-0:2.2.5-2E.1.ia64"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.ia64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.ppc as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gnome-vfs2-devel-0:2.2.5-2E.1.ppc"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.ppc",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.s390 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gnome-vfs2-devel-0:2.2.5-2E.1.s390"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.s390",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.s390x as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gnome-vfs2-devel-0:2.2.5-2E.1.s390x"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.s390x",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.x86_64 as a component of Red Hat Desktop version 3",
          "product_id": "3Desktop:gnome-vfs2-devel-0:2.2.5-2E.1.x86_64"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.x86_64",
        "relates_to_product_reference": "3Desktop"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gnome-vfs2-0:2.2.5-2E.1.i386"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gnome-vfs2-0:2.2.5-2E.1.ia64"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gnome-vfs2-0:2.2.5-2E.1.ppc"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gnome-vfs2-0:2.2.5-2E.1.s390"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gnome-vfs2-0:2.2.5-2E.1.s390x"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.src as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gnome-vfs2-0:2.2.5-2E.1.src"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.src",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gnome-vfs2-0:2.2.5-2E.1.x86_64"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.i386 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gnome-vfs2-devel-0:2.2.5-2E.1.i386"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.i386",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.ia64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gnome-vfs2-devel-0:2.2.5-2E.1.ia64"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.ia64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.ppc as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gnome-vfs2-devel-0:2.2.5-2E.1.ppc"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.ppc",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.s390 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gnome-vfs2-devel-0:2.2.5-2E.1.s390"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.s390",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.s390x as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gnome-vfs2-devel-0:2.2.5-2E.1.s390x"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.s390x",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.x86_64 as a component of Red Hat Enterprise Linux ES version 3",
          "product_id": "3ES:gnome-vfs2-devel-0:2.2.5-2E.1.x86_64"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.x86_64",
        "relates_to_product_reference": "3ES"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gnome-vfs2-0:2.2.5-2E.1.i386"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gnome-vfs2-0:2.2.5-2E.1.ia64"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gnome-vfs2-0:2.2.5-2E.1.ppc"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gnome-vfs2-0:2.2.5-2E.1.s390"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gnome-vfs2-0:2.2.5-2E.1.s390x"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.src as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gnome-vfs2-0:2.2.5-2E.1.src"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.src",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-0:2.2.5-2E.1.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gnome-vfs2-0:2.2.5-2E.1.x86_64"
        },
        "product_reference": "gnome-vfs2-0:2.2.5-2E.1.x86_64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64"
        },
        "product_reference": "gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.i386 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gnome-vfs2-devel-0:2.2.5-2E.1.i386"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.i386",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.ia64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gnome-vfs2-devel-0:2.2.5-2E.1.ia64"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.ia64",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.ppc as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gnome-vfs2-devel-0:2.2.5-2E.1.ppc"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.ppc",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.s390 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gnome-vfs2-devel-0:2.2.5-2E.1.s390"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.s390",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.s390x as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gnome-vfs2-devel-0:2.2.5-2E.1.s390x"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.s390x",
        "relates_to_product_reference": "3WS"
      },
      {
        "category": "default_component_of",
        "full_product_name": {
          "name": "gnome-vfs2-devel-0:2.2.5-2E.1.x86_64 as a component of Red Hat Enterprise Linux WS version 3",
          "product_id": "3WS:gnome-vfs2-devel-0:2.2.5-2E.1.x86_64"
        },
        "product_reference": "gnome-vfs2-devel-0:2.2.5-2E.1.x86_64",
        "relates_to_product_reference": "3WS"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2004-0494",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1617212"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "3AS:gnome-vfs2-0:2.2.5-2E.1.i386",
          "3AS:gnome-vfs2-0:2.2.5-2E.1.ia64",
          "3AS:gnome-vfs2-0:2.2.5-2E.1.ppc",
          "3AS:gnome-vfs2-0:2.2.5-2E.1.s390",
          "3AS:gnome-vfs2-0:2.2.5-2E.1.s390x",
          "3AS:gnome-vfs2-0:2.2.5-2E.1.src",
          "3AS:gnome-vfs2-0:2.2.5-2E.1.x86_64",
          "3AS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386",
          "3AS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64",
          "3AS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc",
          "3AS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390",
          "3AS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x",
          "3AS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64",
          "3AS:gnome-vfs2-devel-0:2.2.5-2E.1.i386",
          "3AS:gnome-vfs2-devel-0:2.2.5-2E.1.ia64",
          "3AS:gnome-vfs2-devel-0:2.2.5-2E.1.ppc",
          "3AS:gnome-vfs2-devel-0:2.2.5-2E.1.s390",
          "3AS:gnome-vfs2-devel-0:2.2.5-2E.1.s390x",
          "3AS:gnome-vfs2-devel-0:2.2.5-2E.1.x86_64",
          "3Desktop:gnome-vfs2-0:2.2.5-2E.1.i386",
          "3Desktop:gnome-vfs2-0:2.2.5-2E.1.ia64",
          "3Desktop:gnome-vfs2-0:2.2.5-2E.1.ppc",
          "3Desktop:gnome-vfs2-0:2.2.5-2E.1.s390",
          "3Desktop:gnome-vfs2-0:2.2.5-2E.1.s390x",
          "3Desktop:gnome-vfs2-0:2.2.5-2E.1.src",
          "3Desktop:gnome-vfs2-0:2.2.5-2E.1.x86_64",
          "3Desktop:gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386",
          "3Desktop:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64",
          "3Desktop:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc",
          "3Desktop:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390",
          "3Desktop:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x",
          "3Desktop:gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64",
          "3Desktop:gnome-vfs2-devel-0:2.2.5-2E.1.i386",
          "3Desktop:gnome-vfs2-devel-0:2.2.5-2E.1.ia64",
          "3Desktop:gnome-vfs2-devel-0:2.2.5-2E.1.ppc",
          "3Desktop:gnome-vfs2-devel-0:2.2.5-2E.1.s390",
          "3Desktop:gnome-vfs2-devel-0:2.2.5-2E.1.s390x",
          "3Desktop:gnome-vfs2-devel-0:2.2.5-2E.1.x86_64",
          "3ES:gnome-vfs2-0:2.2.5-2E.1.i386",
          "3ES:gnome-vfs2-0:2.2.5-2E.1.ia64",
          "3ES:gnome-vfs2-0:2.2.5-2E.1.ppc",
          "3ES:gnome-vfs2-0:2.2.5-2E.1.s390",
          "3ES:gnome-vfs2-0:2.2.5-2E.1.s390x",
          "3ES:gnome-vfs2-0:2.2.5-2E.1.src",
          "3ES:gnome-vfs2-0:2.2.5-2E.1.x86_64",
          "3ES:gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386",
          "3ES:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64",
          "3ES:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc",
          "3ES:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390",
          "3ES:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x",
          "3ES:gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64",
          "3ES:gnome-vfs2-devel-0:2.2.5-2E.1.i386",
          "3ES:gnome-vfs2-devel-0:2.2.5-2E.1.ia64",
          "3ES:gnome-vfs2-devel-0:2.2.5-2E.1.ppc",
          "3ES:gnome-vfs2-devel-0:2.2.5-2E.1.s390",
          "3ES:gnome-vfs2-devel-0:2.2.5-2E.1.s390x",
          "3ES:gnome-vfs2-devel-0:2.2.5-2E.1.x86_64",
          "3WS:gnome-vfs2-0:2.2.5-2E.1.i386",
          "3WS:gnome-vfs2-0:2.2.5-2E.1.ia64",
          "3WS:gnome-vfs2-0:2.2.5-2E.1.ppc",
          "3WS:gnome-vfs2-0:2.2.5-2E.1.s390",
          "3WS:gnome-vfs2-0:2.2.5-2E.1.s390x",
          "3WS:gnome-vfs2-0:2.2.5-2E.1.src",
          "3WS:gnome-vfs2-0:2.2.5-2E.1.x86_64",
          "3WS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386",
          "3WS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64",
          "3WS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc",
          "3WS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390",
          "3WS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x",
          "3WS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64",
          "3WS:gnome-vfs2-devel-0:2.2.5-2E.1.i386",
          "3WS:gnome-vfs2-devel-0:2.2.5-2E.1.ia64",
          "3WS:gnome-vfs2-devel-0:2.2.5-2E.1.ppc",
          "3WS:gnome-vfs2-devel-0:2.2.5-2E.1.s390",
          "3WS:gnome-vfs2-devel-0:2.2.5-2E.1.s390x",
          "3WS:gnome-vfs2-devel-0:2.2.5-2E.1.x86_64"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2004-0494"
        },
        {
          "category": "external",
          "summary": "RHBZ#1617212",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617212"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2004-0494",
          "url": "https://www.cve.org/CVERecord?id=CVE-2004-0494"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0494",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0494"
        }
      ],
      "release_date": "2004-08-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2004-08-04T13:47:00+00:00",
          "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.  Use Red Hat\nNetwork to download and update your packages.  To launch the Red Hat\nUpdate Agent, use the following command:\n\n    up2date\n\nFor information on how to install packages manually, refer to the\nfollowing Web page for the System Administration or Customization\nguide specific to your system:\n\n    http://www.redhat.com/docs/manuals/enterprise/",
          "product_ids": [
            "3AS:gnome-vfs2-0:2.2.5-2E.1.i386",
            "3AS:gnome-vfs2-0:2.2.5-2E.1.ia64",
            "3AS:gnome-vfs2-0:2.2.5-2E.1.ppc",
            "3AS:gnome-vfs2-0:2.2.5-2E.1.s390",
            "3AS:gnome-vfs2-0:2.2.5-2E.1.s390x",
            "3AS:gnome-vfs2-0:2.2.5-2E.1.src",
            "3AS:gnome-vfs2-0:2.2.5-2E.1.x86_64",
            "3AS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386",
            "3AS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64",
            "3AS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc",
            "3AS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390",
            "3AS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x",
            "3AS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64",
            "3AS:gnome-vfs2-devel-0:2.2.5-2E.1.i386",
            "3AS:gnome-vfs2-devel-0:2.2.5-2E.1.ia64",
            "3AS:gnome-vfs2-devel-0:2.2.5-2E.1.ppc",
            "3AS:gnome-vfs2-devel-0:2.2.5-2E.1.s390",
            "3AS:gnome-vfs2-devel-0:2.2.5-2E.1.s390x",
            "3AS:gnome-vfs2-devel-0:2.2.5-2E.1.x86_64",
            "3Desktop:gnome-vfs2-0:2.2.5-2E.1.i386",
            "3Desktop:gnome-vfs2-0:2.2.5-2E.1.ia64",
            "3Desktop:gnome-vfs2-0:2.2.5-2E.1.ppc",
            "3Desktop:gnome-vfs2-0:2.2.5-2E.1.s390",
            "3Desktop:gnome-vfs2-0:2.2.5-2E.1.s390x",
            "3Desktop:gnome-vfs2-0:2.2.5-2E.1.src",
            "3Desktop:gnome-vfs2-0:2.2.5-2E.1.x86_64",
            "3Desktop:gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386",
            "3Desktop:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64",
            "3Desktop:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc",
            "3Desktop:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390",
            "3Desktop:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x",
            "3Desktop:gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64",
            "3Desktop:gnome-vfs2-devel-0:2.2.5-2E.1.i386",
            "3Desktop:gnome-vfs2-devel-0:2.2.5-2E.1.ia64",
            "3Desktop:gnome-vfs2-devel-0:2.2.5-2E.1.ppc",
            "3Desktop:gnome-vfs2-devel-0:2.2.5-2E.1.s390",
            "3Desktop:gnome-vfs2-devel-0:2.2.5-2E.1.s390x",
            "3Desktop:gnome-vfs2-devel-0:2.2.5-2E.1.x86_64",
            "3ES:gnome-vfs2-0:2.2.5-2E.1.i386",
            "3ES:gnome-vfs2-0:2.2.5-2E.1.ia64",
            "3ES:gnome-vfs2-0:2.2.5-2E.1.ppc",
            "3ES:gnome-vfs2-0:2.2.5-2E.1.s390",
            "3ES:gnome-vfs2-0:2.2.5-2E.1.s390x",
            "3ES:gnome-vfs2-0:2.2.5-2E.1.src",
            "3ES:gnome-vfs2-0:2.2.5-2E.1.x86_64",
            "3ES:gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386",
            "3ES:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64",
            "3ES:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc",
            "3ES:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390",
            "3ES:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x",
            "3ES:gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64",
            "3ES:gnome-vfs2-devel-0:2.2.5-2E.1.i386",
            "3ES:gnome-vfs2-devel-0:2.2.5-2E.1.ia64",
            "3ES:gnome-vfs2-devel-0:2.2.5-2E.1.ppc",
            "3ES:gnome-vfs2-devel-0:2.2.5-2E.1.s390",
            "3ES:gnome-vfs2-devel-0:2.2.5-2E.1.s390x",
            "3ES:gnome-vfs2-devel-0:2.2.5-2E.1.x86_64",
            "3WS:gnome-vfs2-0:2.2.5-2E.1.i386",
            "3WS:gnome-vfs2-0:2.2.5-2E.1.ia64",
            "3WS:gnome-vfs2-0:2.2.5-2E.1.ppc",
            "3WS:gnome-vfs2-0:2.2.5-2E.1.s390",
            "3WS:gnome-vfs2-0:2.2.5-2E.1.s390x",
            "3WS:gnome-vfs2-0:2.2.5-2E.1.src",
            "3WS:gnome-vfs2-0:2.2.5-2E.1.x86_64",
            "3WS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.i386",
            "3WS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ia64",
            "3WS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.ppc",
            "3WS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390",
            "3WS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.s390x",
            "3WS:gnome-vfs2-debuginfo-0:2.2.5-2E.1.x86_64",
            "3WS:gnome-vfs2-devel-0:2.2.5-2E.1.i386",
            "3WS:gnome-vfs2-devel-0:2.2.5-2E.1.ia64",
            "3WS:gnome-vfs2-devel-0:2.2.5-2E.1.ppc",
            "3WS:gnome-vfs2-devel-0:2.2.5-2E.1.s390",
            "3WS:gnome-vfs2-devel-0:2.2.5-2E.1.s390x",
            "3WS:gnome-vfs2-devel-0:2.2.5-2E.1.x86_64"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2004:373"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    }
  ]
}

RHSA-2004:464

Vulnerability from csaf_redhat - Published: 2004-09-15 15:17 - Updated: 2025-11-21 17:27

Summary

Red Hat Security Advisory: mc security update

Notes

Topic

An updated mc package that resolves several shell escape security issues is now available. [Updated 5 January 2005] Packages have been updated to include the gmc and mcserv packages which were left out of the initial errata.

Details

Midnight Commander (mc) is a visual shell much like a file manager. Shell escape bugs have been discovered in several of the mc vfs backend scripts. An attacker who is able to influence a victim to open a specially-crafted URI using mc could execute arbitrary commands as the victim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has assigned the name CAN-2004-0494 to this issue. Users of mc should upgrade to this updated package which contains backported patches and is not vulnerable to this issue.

JSON

To clipboard

{
  "document": {
    "aggregate_severity": {
      "namespace": "https://access.redhat.com/security/updates/classification/",
      "text": "Low"
    },
    "category": "csaf_security_advisory",
    "csaf_version": "2.0",
    "distribution": {
      "text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "en",
    "notes": [
      {
        "category": "summary",
        "text": "An updated mc package that resolves several shell escape security issues is\nnow available.\n\n[Updated 5 January 2005]\nPackages have been updated to include the gmc and mcserv packages which were\nleft out of the initial errata.",
        "title": "Topic"
      },
      {
        "category": "general",
        "text": "Midnight Commander (mc) is a visual shell much like a file manager.\n\nShell escape bugs have been discovered in several of the mc vfs backend\nscripts. An attacker who is able to influence a victim to open a\nspecially-crafted URI using mc could execute arbitrary commands as the\nvictim. The Common Vulnerabilities and Exposures project (cve.mitre.org) has\nassigned the name CAN-2004-0494 to this issue.\n\nUsers of mc should upgrade to this updated package which contains\nbackported patches and is not vulnerable to this issue.",
        "title": "Details"
      },
      {
        "category": "legal_disclaimer",
        "text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
        "title": "Terms of Use"
      }
    ],
    "publisher": {
      "category": "vendor",
      "contact_details": "https://access.redhat.com/security/team/contact/",
      "issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
      "name": "Red Hat Product Security",
      "namespace": "https://www.redhat.com"
    },
    "references": [
      {
        "category": "self",
        "summary": "https://access.redhat.com/errata/RHSA-2004:464",
        "url": "https://access.redhat.com/errata/RHSA-2004:464"
      },
      {
        "category": "external",
        "summary": "https://access.redhat.com/security/updates/classification/#low",
        "url": "https://access.redhat.com/security/updates/classification/#low"
      },
      {
        "category": "external",
        "summary": "127974",
        "url": "https://bugzilla.redhat.com/show_bug.cgi?id=127974"
      },
      {
        "category": "self",
        "summary": "Canonical URL",
        "url": "https://security.access.redhat.com/data/csaf/v2/advisories/2004/rhsa-2004_464.json"
      }
    ],
    "title": "Red Hat Security Advisory: mc security update",
    "tracking": {
      "current_release_date": "2025-11-21T17:27:46+00:00",
      "generator": {
        "date": "2025-11-21T17:27:46+00:00",
        "engine": {
          "name": "Red Hat SDEngine",
          "version": "4.6.12"
        }
      },
      "id": "RHSA-2004:464",
      "initial_release_date": "2004-09-15T15:17:00+00:00",
      "revision_history": [
        {
          "date": "2004-09-15T15:17:00+00:00",
          "number": "1",
          "summary": "Initial version"
        },
        {
          "date": "2005-01-05T00:00:00+00:00",
          "number": "2",
          "summary": "Last updated version"
        },
        {
          "date": "2025-11-21T17:27:46+00:00",
          "number": "3",
          "summary": "Last generated version"
        }
      ],
      "status": "final",
      "version": "3"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
                "product": {
                  "name": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
                  "product_id": "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:2.1::as"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Linux Advanced Workstation 2.1",
                "product": {
                  "name": "Red Hat Linux Advanced Workstation 2.1",
                  "product_id": "Red Hat Linux Advanced Workstation 2.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:2.1::aw"
                  }
                }
              },
              {
                "category": "product_name",
                "name": "Red Hat Enterprise Linux WS version 2.1",
                "product": {
                  "name": "Red Hat Enterprise Linux WS version 2.1",
                  "product_id": "Red Hat Enterprise Linux WS version 2.1",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:redhat:enterprise_linux:2.1::ws"
                  }
                }
              }
            ],
            "category": "product_family",
            "name": "Red Hat Enterprise Linux"
          }
        ],
        "category": "vendor",
        "name": "Red Hat"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2004-0494",
      "ids": [
        {
          "system_name": "Red Hat Bugzilla ID",
          "text": "1617212"
        }
      ],
      "notes": [
        {
          "category": "description",
          "text": "Multiple extfs backend scripts for GNOME virtual file system (VFS) before 1.0.1 may allow remote attackers to perform certain unauthorized actions via a gnome-vfs URI.",
          "title": "Vulnerability description"
        },
        {
          "category": "summary",
          "text": "security flaw",
          "title": "Vulnerability summary"
        }
      ],
      "product_status": {
        "fixed": [
          "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
          "Red Hat Enterprise Linux WS version 2.1",
          "Red Hat Linux Advanced Workstation 2.1"
        ]
      },
      "references": [
        {
          "category": "self",
          "summary": "Canonical URL",
          "url": "https://access.redhat.com/security/cve/CVE-2004-0494"
        },
        {
          "category": "external",
          "summary": "RHBZ#1617212",
          "url": "https://bugzilla.redhat.com/show_bug.cgi?id=1617212"
        },
        {
          "category": "external",
          "summary": "https://www.cve.org/CVERecord?id=CVE-2004-0494",
          "url": "https://www.cve.org/CVERecord?id=CVE-2004-0494"
        },
        {
          "category": "external",
          "summary": "https://nvd.nist.gov/vuln/detail/CVE-2004-0494",
          "url": "https://nvd.nist.gov/vuln/detail/CVE-2004-0494"
        }
      ],
      "release_date": "2004-08-04T00:00:00+00:00",
      "remediations": [
        {
          "category": "vendor_fix",
          "date": "2004-09-15T15:17:00+00:00",
          "details": "Before applying this update, make sure that all previously-released\nerrata relevant to your system have been applied.  Use Red Hat\nNetwork to download and update your packages.  To launch the Red Hat\nUpdate Agent, use the following command:\n\n    up2date\n\nFor information on how to install packages manually, refer to the\nfollowing Web page for the System Administration or Customization\nguide specific to your system:\n\n    http://www.redhat.com/docs/manuals/enterprise/",
          "product_ids": [
            "Red Hat Enterprise Linux AS (Advanced Server) version 2.1 ",
            "Red Hat Enterprise Linux WS version 2.1",
            "Red Hat Linux Advanced Workstation 2.1"
          ],
          "restart_required": {
            "category": "none"
          },
          "url": "https://access.redhat.com/errata/RHSA-2004:464"
        }
      ],
      "threats": [
        {
          "category": "impact",
          "details": "Low"
        }
      ],
      "title": "security flaw"
    }
  ]
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2004-0494 (GCVE-0-2004-0494)

FKIE_CVE-2004-0494

GSD-2004-0494

GHSA-7WFM-R8JM-499H

RHSA-2004:373

RHSA-2004:464

Tags

Sightings

Nomenclature