CVE Vulnerabilities

CVE-2004-0224

Published: Apr 15, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED

Multiple buffer overflows in (1) iso2022jp.c or (2) shiftjis.c for Courier-IMAP before 3.0.0, Courier before 0.45, and SqWebMail before 4.0.0 may allow remote attackers to execute arbitrary code when Unicode character is out of BMP range.

Affected Software

Name Vendor Start Version End Version
Courier_mta Double_precision_incorporated 0.43 (including) 0.43 (including)
Courier_mta Double_precision_incorporated 0.43.1 (including) 0.43.1 (including)
Courier_mta Double_precision_incorporated 0.43.2 (including) 0.43.2 (including)
Courier_mta Double_precision_incorporated 0.44 (including) 0.44 (including)
Courier_mta Double_precision_incorporated 0.44.2 (including) 0.44.2 (including)
Sqwebmail Double_precision_incorporated 3.5.2 (including) 3.5.2 (including)
Sqwebmail Double_precision_incorporated 3.5.3 (including) 3.5.3 (including)
Sqwebmail Double_precision_incorporated 3.6.1 (including) 3.6.1 (including)
Sqwebmail Double_precision_incorporated 3.6.2 (including) 3.6.2 (including)
Sqwebmail Double_precision_incorporated 3.6_.0 (including) 3.6_.0 (including)
Courier-imap Inter7 1.6 (including) 1.6 (including)
Courier-imap Inter7 1.7 (including) 1.7 (including)
Courier-imap Inter7 2.0.0 (including) 2.0.0 (including)
Courier-imap Inter7 2.1 (including) 2.1 (including)
Courier-imap Inter7 2.1.1 (including) 2.1.1 (including)
Courier-imap Inter7 2.1.2 (including) 2.1.2 (including)
Courier-imap Inter7 2.2.0 (including) 2.2.0 (including)
Courier-imap Inter7 2.2.1 (including) 2.2.1 (including)
Courier Ubuntu dapper *
Courier Ubuntu devel *
Courier Ubuntu edgy *
Courier Ubuntu feisty *

References