Vulnerability Description
Stack-based buffer overflow in Ipswitch IMail Express Web Messaging before 8.05 might allow remote attackers to execute arbitrary code via an HTML message with long "tag text."
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ipswitch | Imail Express | 8.03 |
References
- http://secunia.com/advisories/11352PatchVendor Advisory
- http://support.ipswitch.com/kb/IM-20031219-DF01.htm
- http://www.osvdb.org/5243Patch
- http://www.securityfocus.com/bid/10106Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15841
- http://secunia.com/advisories/11352PatchVendor Advisory
- http://support.ipswitch.com/kb/IM-20031219-DF01.htm
- http://www.osvdb.org/5243Patch
- http://www.securityfocus.com/bid/10106Patch
- https://exchange.xforce.ibmcloud.com/vulnerabilities/15841
FAQ
What is CVE-2004-2401?
CVE-2004-2401 is a vulnerability with a CVSS score of 7.5 (HIGH). Stack-based buffer overflow in Ipswitch IMail Express Web Messaging before 8.05 might allow remote attackers to execute arbitrary code via an HTML message with long "tag text."
How severe is CVE-2004-2401?
CVE-2004-2401 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-2401?
Check the references section above for vendor advisories and patch information. Affected products include: Ipswitch Imail Express.