What is CVE-2004-1558?

CVE-2004-1558 is a vulnerability in N/a. Published 2005-02-20.

Is CVE-2004-1558 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2004-1558

Multiple stack-based buffer overflows in YPOPs! (aka YahooPOPS) 0.4 through 0.6 allow remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) POP3 USER command or (2) SMTP request.

EPSS: 0.863 (99.4th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

References

dbeusee.home.comcast.net/history.html (x_refsource_CONFIRM)
10366 (x_refsource_OSVDB, vdb-entry)
www.hat-squad.com/en/000075.html (x_refsource_MISC)
20040927 [Hat-Squad] Remote Buffer overflow Vulnerability in YahooPOPS (mailing-list, x_refsource_BUGTRAQ)
10367 (x_refsource_OSVDB, vdb-entry)
ypops-smtp-bo(17518) (vdb-entry, x_refsource_XF)
1011426 (vdb-entry, x_refsource_SECTRACK)
12660 (x_refsource_SECUNIA, third-party-advisory)
ypops-pop3-bo(17515) (vdb-entry, x_refsource_XF)
20061020 vendor ACK for old YPOPs! issue (mailing-list, x_refsource_VIM)

Frequently asked questions

What is CVE-2004-1558?: CVE-2004-1558 is a vulnerability in N/a. Published 2005-02-20.
Is CVE-2004-1558 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.