Published: 03/03/2004 Updated: 11/07/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 668

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

Multiple buffer overflows in Metamail 2.7 and previous versions allow remote malicious users to execute arbitrary code.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sgi propack 2.3
sgi propack 2.4
metamail corporation metamail
redhat linux advanced workstation 2.1
redhat enterprise linux 2.1

Ulf Härnhammar discovered two format string bugs (CAN-2004-0104) and two buffer overflow bugs (CAN-2004-0105) in metamail, an implementation of MIME An attacker could create a carefully-crafted mail message which will execute arbitrary code as the victim when it is opened and parsed through metamail We have been devoting some effort to trying to ...

NVD-CWE-Other http://www.redhat.com/support/errata/RHSA-2004-073.html http://archives.neohapsis.com/archives/vulnwatch/2004-q1/0041.html http://www.debian.org/security/2004/dsa-449 http://www.kb.cert.org/vuls/id/513062 http://secunia.com/advisories/10908 http://www.ciac.org/ciac/bulletins/o-083.shtml http://www.securityfocus.com/bid/9692 http://www.slackware.com/security/viewer.php?l=slackware-security&y=2004&m=slackware-security.404734 http://www.mandriva.com/security/advisories?name=MDKSA-2004:014 http://marc.info/?l=bugtraq&m=107713476911429&w=2 https://exchange.xforce.ibmcloud.com/vulnerabilities/15258 https://exchange.xforce.ibmcloud.com/vulnerabilities/15247 https://nvd.nist.gov https://www.debian.org/security/./dsa-449 https://www.kb.cert.org/vuls/id/513062

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2004-0105

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect