CyberSec.Space Logo
Back to CVE Browser

CVE-2004-0309

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1070%
EPSS Percentile7.45th
PublishedNov 23, 2004
Last ModifiedApr 16, 2026

Vulnerability Description

Stack-based buffer overflow in the SMTP service support in vsmon.exe in Zone Labs ZoneAlarm before 4.5.538.001, ZoneLabs Integrity client 4.0 before 4.0.146.046, and 4.5 before 4.5.085, allows remote attackers to execute arbitrary code via a long RCPT TO argument.

Affected Platforms (CPE)

πŸ“¦
Zonelabs

Integrity

= 4.0
πŸ“¦
Zonelabs

Zonealarm

= 4.0
πŸ“¦
Zonelabs

Zonealarm

= 4.0
πŸ“¦
Zonelabs

Zonealarm

= 4.0
πŸ“¦
Zonelabs

Zonealarm

= 4.5

References & Advisories

πŸ”— http://download.zonelabs.com/bin/free/securityAlert/8.html
πŸ”— http://marc.info/?l=bugtraq&m=107722656827427&w=2
πŸ”— http://www.ciac.org/ciac/bulletins/o-084.shtml
πŸ”— http://www.kb.cert.org/vuls/id/619982
πŸ”— http://www.osvdb.org/3991
πŸ”— http://www.securityfocus.com/bid/9696
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/14991
πŸ”— http://download.zonelabs.com/bin/free/securityAlert/8.html

Related Vulnerabilities

CVE-2020-941110.0

The file transfer component of TIBCO Software Inc.'s TIBCO Managed File Transfer Platform Server for IBM i contains a vulnerabilit...

CVE-2019-1106110.0

A broken access control vulnerability in HG100 firmware versions up to 4.00.06 allows an attacker in the same local area network t...

CVE-2019-1106310.0

A broken access control vulnerability in SmartHome app (Android versions up to 3.0.42_190515, ios versions up to 2.0.22) allows an...

CVE-2020-202110.0

When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate Identity Provider Certificate' option i...