Update Sun Dec 22 06:29:47 UTC 2024

trickest · Dec 22, 2024 · 3576c65 · 3576c65
1 parent d3b894a
commit 3576c65
Show file tree

Hide file tree

Showing 2 changed files with 18 additions and 0 deletions.
diff --git a/2004/CVE-2004-0224.md b/2004/CVE-2004-0224.md
@@ -0,0 +1,17 @@
+### [CVE-2004-0224](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0224)
+![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
+![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)
+
+### Description
+
+Multiple buffer overflows in (1) iso2022jp.c or (2) shiftjis.c for Courier-IMAP before 3.0.0, Courier before 0.45, and SqWebMail before 4.0.0 may allow remote attackers to execute arbitrary code "when Unicode character is out of BMP range."
+
+### POC
+
+#### Reference
+- http://sourceforge.net/project/shownotes.php?release_id=5767
+
+#### Github
+No PoCs found on GitHub currently.
+
diff --git a/references.txt b/references.txt
@@ -819,6 +819,7 @@ CVE-2004-0213 - https://docs.microsoft.com/en-us/security-updates/securitybullet
 CVE-2004-0214 - https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-037
 CVE-2004-0215 - https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-018
 CVE-2004-0216 - https://docs.microsoft.com/en-us/security-updates/securitybulletins/2004/ms04-038
+CVE-2004-0224 - http://sourceforge.net/project/shownotes.php?release_id=5767
 CVE-2004-0228 - http://fedoranews.org/updates/FEDORA-2004-111.shtml
 CVE-2004-0230 - http://www.cisco.com/warp/public/707/cisco-sa-20040420-tcp-ios.shtml
 CVE-2004-0230 - http://www.kb.cert.org/vuls/id/415294