CVE-2004-1272 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Filter

5 documents5 sources

Severity

10.0CRITICALNVD

EPSS

5.1%

top 10.10%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Joomla Filter Bolthole Filter

Timeline

PublishedJan 10

Latest updateApr 29

Description

Buffer overflow in the save_embedded_address function in filter.c for elm/bolthole filter 2.6.1 allows remote attackers to execute arbitrary code via a crafted email message.

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 10.0 | Impact: 10.0

Affected Packages2 packages

▶NVDbolthole/filter2.6.1

▶Debianjoomla/filter< 2.4.2-1.1+3

🔴Vulnerability Details

GHSA

GHSA-fhwr-843x-gg38: Buffer overflow in the save_embedded_address function in filter↗2022-04-29

▶

OSV

CVE-2004-1272: Buffer overflow in the save_embedded_address function in filter↗2005-01-10

▶

CVEList

CVE-2004-1272: Buffer overflow in the save_embedded_address function in filter↗2004-12-22

▶

📋Vendor Advisories

Debian

CVE-2004-1272: filter - Buffer overflow in the save_embedded_address function in filter.c for elm/boltho...↗2004

▶