CVE-2004-0524

2004-06-0804:00:00

mitre

www.cve.org

6.9 Medium

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

79.8%

JSON

Buffer overflow in the chpasswd command in the Change_passwd plugin before 4.0, as used in SquirrelMail, allows local users to gain root privileges via a long user name.

References

marc.info/?l=bugtraq&m=108222863917958&w=2

marc.info/?l=bugtraq&m=108311782032370&w=2

secunia.com/advisories/11415

www.securityfocus.com/bid/10166

www.squirrelmail.org/plugin_view.php?id=117

exchange.xforce.ibmcloud.com/vulnerabilities/15889