返回 CVE 浏览器

CVE-2004-0309

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1070%

EPSS Percentile7.45th

Published2004年11月23日

Last Modified2026年4月16日

Vulnerability Description

Stack-based buffer overflow in the SMTP service support in vsmon.exe in Zone Labs ZoneAlarm before 4.5.538.001, ZoneLabs Integrity client 4.0 before 4.0.146.046, and 4.5 before 4.5.085, allows remote attackers to execute arbitrary code via a long RCPT TO argument.

Affected Platforms (CPE)

📦

Zonelabs

Integrity

= 4.0

📦

Zonelabs

Zonealarm

= 4.0

📦

Zonelabs

Zonealarm

= 4.0

📦

Zonelabs

Zonealarm

= 4.0

📦

Zonelabs

Zonealarm

= 4.5

References & Advisories

🔗 http://download.zonelabs.com/bin/free/securityAlert/8.html

🔗 http://marc.info/?l=bugtraq&m=107722656827427&w=2

🔗 http://www.ciac.org/ciac/bulletins/o-084.shtml

🔗 http://www.kb.cert.org/vuls/id/619982

🔗 http://www.osvdb.org/3991

🔗 http://www.securityfocus.com/bid/9696

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/14991

🔗 http://download.zonelabs.com/bin/free/securityAlert/8.html

相关漏洞威胁

CVE-2020-941110.0

The file transfer component of TIBCO Software Inc.'s TIBCO Managed File Transfer Platform Server for IBM i contains a vulnerabilit...

CVE-2019-1106110.0

A broken access control vulnerability in HG100 firmware versions up to 4.00.06 allows an attacker in the same local area network t...

CVE-2019-1106310.0

A broken access control vulnerability in SmartHome app (Android versions up to 3.0.42_190515, ios versions up to 2.0.22) allows an...

CVE-2020-202110.0

When Security Assertion Markup Language (SAML) authentication is enabled and the 'Validate Identity Provider Certificate' option i...