Lucene search

[email protected]CVE-2004-2168

HistoryJul 10, 2005 - 4:00 a.m.

CVE-2004-2168

2005-07-1004:00:00

[email protected]

web.nvd.nist.gov

cve-2004-2168

basomail

denial of service

cpu consumption

remote attackers

tcp port

smtp

pop3

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.1 High

AI Score

Confidence

High

0.017 Low

EPSS

Percentile

87.7%

JSON

BaSoMail 1.24 allows remote attackers to cause a denial of service (CPU consumption) via multiple connections to TCP port (1) 25 (SMTP) or (2) 110 (POP3).

Affected configurations

NVD

Node

baardsen_softwarebasomail_serverMatch1.24

CPENameOperatorVersion
baardsen_software:basomail_serverbaardsen software basomail servereq1.24

CPE	Name	Operator	Version
baardsen_software:basomail_server	baardsen software basomail server	eq	1.24

References

members.lycos.co.uk/r34ct/main/Baso_mail/Baso_1.24.txt

securitytracker.com/id?1008912

www.osvdb.org/3789

www.secunia.com/advisories/10761/

exchange.xforce.ibmcloud.com/vulnerabilities/15002

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7.1 High

AI Score

Confidence

High

0.017 Low

EPSS

Percentile

87.7%

JSON

Related for CVE-2004-2168

nvd1 cvelist1