cbcvebase.
CVE-2004-0234
published 2004-08-18

CVE-2004-0234: Multiple stack-based buffer overflows in the get_header function in header.c for LHA 1.14, as used in products such as Barracuda Spam Firewall, allow remote…

PriorityP336critical10CVSS 2.0
AVNACLAuNCCICAC
EPSS
10.26%
95.1th percentile
Multiple stack-based buffer overflows in the get_header function in header.c for LHA 1.14, as used in products such as Barracuda Spam Firewall, allow remote attackers or local users to execute arbitrary code via long directory or file names in an LHA archive, which triggers the overflow when testing or extracting the archive.

Affected

42 ranges· showing 25
VendorProductVersion rangeFixed in
clearswiftmailsweeper
clearswiftmailsweeper
clearswiftmailsweeper
clearswiftmailsweeper
clearswiftmailsweeper
clearswiftmailsweeper
clearswiftmailsweeper
clearswiftmailsweeper
clearswiftmailsweeper
clearswiftmailsweeper
clearswiftmailsweeper
clearswiftmailsweeper
clearswiftmailsweeper
clearswiftmailsweeper
f-securef-secure_anti-virus
f-securef-secure_anti-virus
f-securef-secure_anti-virus
f-securef-secure_anti-virus
f-securef-secure_anti-virus
f-securef-secure_anti-virus
f-securef-secure_anti-virus
f-securef-secure_anti-virus
f-securef-secure_anti-virus
f-securef-secure_anti-virus
f-securef-secure_for_firewalls

CVSS provenance

nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
vendor_redhat10.0CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.