Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0757

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2004-0757
Last Modified 21 Aug 2010 12:21:12
Published 18 Aug 2004 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0757

Summary

Heap-based buffer overflow in the SendUidl in the POP3 capability for Mozilla before 1.7, Firefox before 0.9, and Thunderbird before 0.7, may allow remote POP3 mail servers to execute arbitrary code.

Vulnerable Systems

Application

  • Mozilla 1.7

  • Mozilla Firefox 0.9

  • Mozilla Thunderbird 0.7


References

CERT-VN - VU#561022

CONFIRM - http://bugzilla.mozilla.org/show_bug.cgi?id=229374

XF - mozilla-senduidl-pop3-bo(16869)

REDHAT - RHSA-2004:421

SUSE - SUSE-SA:2004:036

CONFIRM - http://www.mozilla.org/projects/security/known-vulnerabilities.html#mozilla1.7

SECUNIA - 10856

FEDORA - FLSA:2089

BID - 15495

SCO - SCOSA-2005.49


Last Updated: 27 May 2016 10:38:44