CVE-2004-0224

Published: Apr 15, 2004Modified: Apr 16, 2026

7.5

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability: 10.0 / Impact: 6.4

Source: NVD

Description

Multiple buffer overflows in (1) iso2022jp.c or (2) shiftjis.c for Courier-IMAP before 3.0.0, Courier before 0.45, and SqWebMail before 4.0.0 may allow remote attackers to execute arbitrary code "when Unicode character is out of BMP range."

Affected (22)

Products: Double Precision Incorporated: Courier Mta, Sqwebmail · Inter7: Courier Imap · Gentoo: Linux

Double Precision Incorporated

2 products

1 product

1 product

Configuration A

18 vulnerable

Vulnerable Software	Affected Versions
Double Precision Incorporated Courier Mta	Version 0.43.1
Double Precision Incorporated Courier Mta	Version 0.43.2
Double Precision Incorporated Courier Mta	Version 0.43
Double Precision Incorporated Courier Mta	Version 0.44.2
Double Precision Incorporated Courier Mta	Version 0.44
Double Precision Incorporated Sqwebmail	Version 3.5.2
Double Precision Incorporated Sqwebmail	Version 3.5.3
Double Precision Incorporated Sqwebmail	Version 3.6.1
Double Precision Incorporated Sqwebmail	Version 3.6.2
Double Precision Incorporated Sqwebmail	Version 3.6_.0
Inter7 Courier Imap	Version 1.6
Inter7 Courier Imap	Version 1.7
Inter7 Courier Imap	Version 2.0.0
Inter7 Courier Imap	Version 2.1.1
Inter7 Courier Imap	Version 2.1.2
Inter7 Courier Imap	Version 2.1
Inter7 Courier Imap	Version 2.2.0
Inter7 Courier Imap	Version 2.2.1