VDB
CVE-2004-0104
CVE-2004-0104
PUBLISHED
CVSS 7.5 HIGH
Multiple format string vulnerabilities in Metamail 2.7 and earlier allow remote attackers to execute arbitrary code.
EPSS 51.05% · 97.9th percentile
Risk Scores
CVSS 2.0
7.5
EPSS Score
51.05%
97.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| metamail_corporation | metamail | 0 |
| sgi | propack | 2.4, 2.3 |
| redhat | linux_advanced_workstation | 2.1 |
| n/a | n/a | n/a |
| redhat | enterprise_linux | 2.1, 2.1, 2.1 |
Timeline
- Feb 19, 2004 CVE Published
- Feb 4, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Oct 26, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- Jul 17, 2023 EPSS Score
- Sep 8, 2023 EPSS Score
- Dec 22, 2023 EPSS Score
- Feb 13, 2024 EPSS Score
References
- metamail-printheader-format-string(15259) vdb
- DSA-449 vendor-advisory
- SSA:2004-049 vendor-advisory
- O-083 third-party-advisory
- 9692 vdb
- 10908 third-party-advisory
- MDKSA-2004:014 vendor-advisory
- metamail-contenttype-format-string(15245) vdb
- RHSA-2004:073 vendor-advisory
- 20040218 metamail format string bugs and buffer overflows mailing-list
- VU#518518 third-party-advisory
- 20040218 metamail format string bugs and buffer overflows mailing-list
- https://nvd.nist.gov/vuln/detail/CVE-2004-0104 advisory