Lucene search

[email protected]CVE-2004-0156

HistoryJun 01, 2004 - 4:00 a.m.

CVE-2004-0156

2004-06-0104:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2004-0156

format string

ssmtp

denial of service

arbitrary code

vulnerability

nvd

7.5 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.02 Low

EPSS

Percentile

88.7%

JSON

Format string vulnerabilities in the (1) die or (2) log_event functions for ssmtp before 2.50.6 allow remote mail relays to cause a denial of service and possibly execute arbitrary code.

CPENameOperatorVersion
ssmtp:ssmtpssmtple2.49

CPE	Name	Operator	Version
ssmtp:ssmtp	ssmtp	le	2.49

References

marc.info/?l=bugtraq&m=108403772130855&w=2

secunia.com/advisories/11378

secunia.com/advisories/11384

secunia.com/advisories/11485

secunia.com/advisories/11571

security.gentoo.org/glsa/glsa-200404-18.xml

securitytracker.com/id?1009788

www.debian.org/security/2004/dsa-485

www.osvdb.org/5360

www.osvdb.org/5361

www.securityfocus.com/bid/10150

exchange.xforce.ibmcloud.com/vulnerabilities/15872

7.5 High

AI Score

Confidence

Low

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.02 Low

EPSS

Percentile

88.7%

JSON

Related for CVE-2004-0156

nessus2 debiancve1 openvas4 gentoo1 ubuntucve1 securityvulns1 osv1 debian1