[email protected]NVD:CVE-2004-0757

HistoryAug 18, 2004 - 4:00 a.m.

CVE-2004-0757

2004-08-1804:00:00

[email protected]

web.nvd.nist.gov

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.017 Low

EPSS

Percentile

87.7%

JSON

Heap-based buffer overflow in the SendUidl in the POP3 capability for Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7, may allow remote POP3 mail servers to execute arbitrary code.

Affected configurations

NVD

Node

mozillafirefoxRange≤0.9

mozillamozillaRange≤1.7

mozillathunderbirdRange≤0.7

References

ftp://ftp.sco.com/pub/updates/OpenServer/SCOSA-2005.49/SCOSA-2005.49.txt

bugzilla.mozilla.org/show_bug.cgi?id=229374

marc.info/?l=bugtraq&m=109900315219363&w=2

secunia.com/advisories/10856

www.kb.cert.org/vuls/id/561022

www.mozilla.org/projects/security/known-vulnerabilities.html#mozilla1.7

www.novell.com/linux/security/advisories/2004_36_mozilla.html

www.redhat.com/support/errata/RHSA-2004-421.html

www.securityfocus.com/bid/15495

exchange.xforce.ibmcloud.com/vulnerabilities/16869

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A11042

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A3250

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

7.6 High

AI Score

Confidence

Low

0.017 Low

EPSS

Percentile

87.7%

JSON

Related for NVD:CVE-2004-0757

cve1 nessus5 cert1 freebsd1 openvas6 cvelist1 slackware1 redhat1 suse7