CVE-2004-0309: Buffer Overflow
First published: Wed Sep 01 2004(Updated: )
Stack-based buffer overflow in the SMTP service support in vsmon.exe in Zone Labs ZoneAlarm before 4.5.538.001, ZoneLabs Integrity client 4.0 before 4.0.146.046, and 4.5 before 4.5.085, allows remote attackers to execute arbitrary code via a long RCPT TO argument.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Zonelabs ZoneAlarm | =4.0 | |
| Zonelabs ZoneAlarm | =4.0 | |
| ZoneLabs Integrity | =4.0 | |
| Zonelabs ZoneAlarm | =4.0 | |
| Zonelabs ZoneAlarm | =4.5 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- http://www.securityfocus.com/bid/9696
- http://www.kb.cert.org/vuls/id/619982
- http://download.zonelabs.com/bin/free/securityAlert/8.html
- http://www.ciac.org/ciac/bulletins/o-084.shtml
- http://www.osvdb.org/3991
- http://marc.info/?l=bugtraq&m=107722656827427&w=2
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14991
- collector/nvd-historical
- collector/nvd-index
- agent/author
- agent/severity
- agent/references
- agent/weakness
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/zonelabs
- canonical/zonelabs zonealarm
- version/zonelabs zonealarm/4.0
- canonical/zonelabs integrity
- version/zonelabs integrity/4.0
- version/zonelabs zonealarm/4.5