CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2004-2375

HIGH
7.5
CVSS Severity Score
EPSS Score0.1760%
EPSS Percentile15.69th
Published2004年12月31日
Last Modified2026年4月16日

Vulnerability Description

Buffer overflow in the POP3 server in 1st Class Mail Server 4.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an APOP USER command with a long second parameter (digest).

Affected Platforms (CPE)

📦
1st Class Internet Solutions

1st Class Mail Server

= 4.0

References & Advisories

🔗 http://secunia.com/advisories/11029
🔗 http://securitytracker.com/id?1009279
🔗 http://www.digiti.be/jeffosz/advisories/1stclasspop3.txt
🔗 http://www.osvdb.org/4129
🔗 http://www.securityfocus.com/bid/9794
🔗 http://www.zone-h.org/advisories/read/id=4047
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/15314
🔗 http://secunia.com/advisories/11029

相關漏洞威脅

CVE-2004-24465.0

Directory traversal vulnerability in 1st Class Mail Server 4.01 allows remote attackers to read arbitrary files via a ".." (dot do...

CVE-2004-24474.3

Cross-site scripting (XSS) vulnerability in 1st Class Mail Server 4.01 allows remote attackers to inject arbitrary web script or H...

CVE-2004-100610.0

Format string vulnerability in the log functions in dhcpd for dhcp 2.x allows remote DNS servers to execute arbitrary code via cer...

CVE-2004-106710.0

Off-by-one error in the mysasl_canon_user function in Cyrus IMAP Server 2.2.9 and earlier leads to a buffer overflow, which may al...