cbcvebase.
CVE-2004-0104
published 2004-03-03

CVE-2004-0104: Multiple format string vulnerabilities in Metamail 2.7 and earlier allow remote attackers to execute arbitrary code.

PriorityP347high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
26.22%
97.7th percentile
Multiple format string vulnerabilities in Metamail 2.7 and earlier allow remote attackers to execute arbitrary code.

Affected

5 ranges
VendorProductVersion rangeFixed in
metamail_corporationmetamail<= 2.7
redhatenterprise_linux
redhatlinux_advanced_workstation
sgipropack
sgipropack

Detection & IOCsextracted from sources · hover to see the quote

  • Metamail 2.7 and earlier is affected by multiple format string vulnerabilities allowing remote code execution; detect presence of vulnerable Metamail versions (2.7 and earlier) on systems processing email
  • Exploit proof-of-concept files are publicly available; monitor for download or presence of exploit artifacts associated with ExploitDB entry 23728
  • Two buffer overflow and two format string vulnerabilities reported in Metamail; monitor for anomalous process behavior (crashes, unexpected child processes) spawned from Metamail when handling crafted email messages
  • ·CVE-2004-0104 covers multiple distinct vulnerability classes (buffer overflow AND format string) in Metamail 2.7 and earlier; ensure detection/patching addresses both classes, not just one

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat7.5HIGH
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.