CVE-2004-0104

  1. Reconshell
  2. Vulnerabilities (CVE)
  3. CVE-2004-0104
Multiple format string vulnerabilities in Metamail 2.7 and earlier allow remote attackers to execute arbitrary code.

7.5 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References
Link Resource
http://www.redhat.com/support/errata/RHSA-2004-073.html Patch Vendor Advisory
http://www.securityfocus.com/bid/9692 Exploit Patch Vendor Advisory
http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0041.html
http://www.debian.org/security/2004/dsa-449
http://www.kb.cert.org/vuls/id/518518 US Government Resource
http://secunia.com/advisories/10908
http://www.ciac.org/ciac/bulletins/o-083.shtml
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.404734
http://www.mandriva.com/security/advisories?name=MDKSA-2004:014
http://marc.info/?l=bugtraq&m=107713476911429&w=2
https://exchange.xforce.ibmcloud.com/vulnerabilities/15259
https://exchange.xforce.ibmcloud.com/vulnerabilities/15245
Advertisement

NeevaHost hosting service
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:sgi:propack:2.3:*:*:*:*:*:*:*
cpe:2.3:a:sgi:propack:2.4:*:*:*:*:*:*:*
cpe:2.3:a:metamail_corporation:metamail:*:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:redhat:linux_advanced_workstation:2.1:*:itanium_processor:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:2.1:*:enterprise_server:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:2.1:*:workstation:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:2.1:*:advanced_server:*:*:*:*:*
Information

Published : 2004-03-02 21:00

Updated : 2017-07-10 18:29

NVD link : CVE-2004-0104

Mitre link : CVE-2004-0104

JSON object : View

CWE
NVD-CWE-Other
Advertisement

dedicated server usa
Products Affected

sgi

  • propack

redhat

  • enterprise_linux
  • linux_advanced_workstation

metamail_corporation

  • metamail