CVE-2004-0524

Name of the Vulnerable Software and Affected Versions SquirrelMail versions prior to 4.0

Description A buffer overflow issue exists in the chpasswd command within the Change passwd plugin. This allows local users to potentially gain root privileges by providing a long user name.

Recommendations For versions prior to 4.0, update to version 4.0 or later to resolve the issue. As a temporary workaround, consider restricting access to the chpasswd command to minimize the risk of exploitation.