← CVECheck
HomeVulnerabilities

CVE-2004-0524 — HIGH severity vulnerability (Buffer overflow in the chpasswd command in the Change_passwd)

Buffer overflow in the chpasswd command in the Change_passwd plugin before 4.0, as used in SquirrelMail, allows local users to gain root privileges via a long user name.

CVE IDCVE-2004-0524
SeverityHIGH
CVSS score10.0
CVSS vectorAV:N/AC:L/Au:N/C:C/I:C/A:C
CWENVD-CWE-Other
StatusModified
Published2004-08-06
Last modified2026-04-16
DescriptionBuffer overflow in the chpasswd command in the Change_passwd plugin before 4.0, as used in SquirrelMail, allows local users to gain root privileges via a long user name.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →