Lucene search

[email protected]CVE-2004-1945

HistoryMay 10, 2005 - 4:00 a.m.

CVE-2004-1945

2005-05-1004:00:00

[email protected]

web.nvd.nist.gov

cve-2004-1945

buffer overflow

kinesphere exchange

pop3

remote attackers

arbitrary code

mail from field

nvd

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.3 High

AI Score

Confidence

Low

0.283 Low

EPSS

Percentile

96.9%

JSON

Buffer overflow in Kinesphere eXchange POP3 allows remote attackers to execute arbitrary code via a long MAIL FROM field.

Affected configurations

NVD

Node

kinesphere_corporationexchange_pop3Match4.0

kinesphere_corporationexchange_pop3Match5.0

CPENameOperatorVersion
kinesphere_corporation:exchange_pop3kinesphere corporation exchange pop3eq4.0
kinesphere_corporation:exchange_pop3kinesphere corporation exchange pop3eq5.0

CPE	Name	Operator	Version
kinesphere_corporation:exchange_pop3	kinesphere corporation exchange pop3	eq	4.0
kinesphere_corporation:exchange_pop3	kinesphere corporation exchange pop3	eq	5.0

References

marc.info/?l=bugtraq&m=108247921402458&w=2

marc.info/?l=bugtraq&m=108568462428096&w=2

secunia.com/advisories/11449

securitytracker.com/id?1009882

www.osvdb.org/5593

www.securityfocus.com/bid/10180

exchange.xforce.ibmcloud.com/vulnerabilities/15922

7.5 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

8.3 High

AI Score

Confidence

Low

0.283 Low

EPSS

Percentile

96.9%

JSON

Related for CVE-2004-1945

nvd1 cvelist1