CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2004-0524

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0250%
EPSS Percentile27.89th
Published2004年8月6日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in the chpasswd command in the Change_passwd plugin before 4.0, as used in SquirrelMail, allows local users to gain root privileges via a long user name.

Affected Platforms (CPE)

No CPE configurations currently published for this record.

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=108222863917958&w=2
🔗 http://marc.info/?l=bugtraq&m=108311782032370&w=2
🔗 http://secunia.com/advisories/11415
🔗 http://www.securityfocus.com/bid/10166
🔗 http://www.squirrelmail.org/plugin_view.php?id=117
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/15889
🔗 http://marc.info/?l=bugtraq&m=108222863917958&w=2
🔗 http://marc.info/?l=bugtraq&m=108311782032370&w=2

相關漏洞威脅

CVE-2004-000210.0

The TCP MSS (maximum segment size) functionality in netinet allows remote attackers to cause a denial of service (resource exhaust...

CVE-2004-044410.0

Multiple vulnerabilities in SYMDNS.SYS for Symantec Norton Internet Security and Professional 2002 through 2004, Norton Personal F...

CVE-2004-176010.0

The default installation of Cisco voice products, when running the IBM Director Agent on IBM servers before OS 2000.2.6, does not ...

CVE-2004-003910.0

Multiple format string vulnerabilities in HTTP Application Intelligence (AI) component in Check Point Firewall-1 NG-AI R55 and R54...