CVE-2004-2238

Опубликовано: 31 дек. 2004

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Format string vulnerability in vsybase.c in vpopmail 5.4.2 and earlier has unknown impact and attack vectors. NOTE: in a followup post, it was observed that the source code used constants that, when compiled, became static format strings. Thus this is not a vulnerability

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):3.4.1:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):3.4.2:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):3.4.3:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):3.4.4:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):3.4.5:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):3.4.6:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):3.4.7:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):3.4.8:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):3.4.9:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):3.4.10:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):3.4.11:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):3.4.11e:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):4.5:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):4.6:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):4.7:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):4.8:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):4.9:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):4.9.10:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):4.10:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):5.2.1:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):5.2.2:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):5.3.20:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):5.3.21:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):5.3.22:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):5.3.23:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):5.3.24:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):5.3.25:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):5.3.26:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):5.3.27:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):5.3.28:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):5.3.29:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):5.3.30:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):5.4:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):5.4.1:*:*:*:*:*:*:*

cpe:2.3:a:inter7:vpopmail_\(vchkpw\):5.4.2:*:*:*:*:*:*:*

EPSS

Процентиль: 69%

0.00603

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2004-2238

debian

почти 21 год назад

Format string vulnerability in vsybase.c in vpopmail 5.4.2 and earlier ...

GHSA-vgx4-x9cv-rgq3

github

больше 3 лет назад

** DISPUTED ** Format string vulnerability in vsybase.c in vpopmail 5.4.2 and earlier has unknown impact and attack vectors. NOTE: in a followup post, it was observed that the source code used constants that, when compiled, became static format strings. Thus this is not a vulnerability.