Lucene search

K
cvelistMitreCVELIST:CVE-2004-0884
HistoryOct 21, 2004 - 4:00 a.m.

CVE-2004-0884

2004-10-2104:00:00
mitre
www.cve.org

9.1 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

15.9%

The (1) libsasl and (2) libsasl2 libraries in Cyrus-SASL 2.1.18 and earlier trust the SASL_PATH environment variable to find all available SASL plug-ins, which allows local users to execute arbitrary code by modifying the SASL_PATH to point to malicious programs.

9.1 High

AI Score

Confidence

High

0.0005 Low

EPSS

Percentile

15.9%