Stack-based buffer overflow in the SMTP service support in vsmon.exe in Zone Labs ZoneAlarm before 4.5.538.001, ZoneLabs Integrity client 4.0 before 4.0.146.046, and 4.5 before 4.5.085, allows remote attackers to execute arbitrary code via a long RCPT TO argument.
References
Link | Resource |
---|---|
http://download.zonelabs.com/bin/free/securityAlert/8.html | |
http://marc.info/?l=bugtraq&m=107722656827427&w=2 | |
http://www.ciac.org/ciac/bulletins/o-084.shtml | |
http://www.kb.cert.org/vuls/id/619982 | Third Party Advisory US Government Resource |
http://www.osvdb.org/3991 | |
http://www.securityfocus.com/bid/9696 | Vendor Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/14991 |
Configurations
Configuration 1 (hide)
|
History
No history.
Information
Published : 2004-11-23 05:00
Updated : 2024-02-28 10:24
NVD link : CVE-2004-0309
Mitre link : CVE-2004-0309
CVE.ORG link : CVE-2004-0309
JSON object : View
Products Affected
zonelabs
- zonealarm
- integrity
CWE