CyberSec.Space Logo
CVEブラウザに戻る

CVE-2004-2238

MEDIUM
5.0
CVSS Severity Score
EPSS Score0.1830%
EPSS Percentile42.03th
Published2004年12月31日
Last Modified2026年4月16日

Vulnerability Description

Format string vulnerability in vsybase.c in vpopmail 5.4.2 and earlier has unknown impact and attack vectors. NOTE: in a followup post, it was observed that the source code used constants that, when compiled, became static format strings. Thus this is not a vulnerability

Affected Platforms (CPE)

No CPE configurations currently published for this record.

References & Advisories

🔗 http://archives.neohapsis.com/archives/bugtraq/2004-08/0226.html
🔗 http://archives.neohapsis.com/archives/bugtraq/2004-08/0264.html
🔗 http://archives.neohapsis.com/archives/bugtraq/2004-08/0286.html
🔗 http://www.osvdb.org/9147
🔗 http://www.securityfocus.com/bid/10962
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/17017
🔗 http://archives.neohapsis.com/archives/bugtraq/2004-08/0226.html
🔗 http://archives.neohapsis.com/archives/bugtraq/2004-08/0264.html

関連する脆弱性情報

CVE-2004-101210.0

The argument parser of the PARTIAL command in Cyrus IMAP Server 2.2.6 and earlier allows remote authenticated users to execute arb...

CVE-2004-105010.0

Heap-based buffer overflow in Internet Explorer 6 allows remote attackers to execute arbitrary code via long (1) SRC or (2) NAME a...

CVE-2004-041810.0

serve_notify in CVS 1.12.x through 1.12.8, and 1.11.x through 1.11.16, does not properly handle empty data lines, which may allow ...

CVE-2004-176010.0

The default installation of Cisco voice products, when running the IBM Director Agent on IBM servers before OS 2000.2.6, does not ...