{"id":"CVE-2004-0399","details":"Stack-based buffer overflow in Exim 3.35, and other versions before 4, when the sender_verify option is true, allows remote attackers to cause a denial of service and possibly execute arbitrary code during sender verification.","modified":"2026-04-10T03:36:23.185432Z","published":"2004-07-07T04:00:00Z","references":[{"type":"ADVISORY","url":"http://secunia.com/advisories/11558"},{"type":"ADVISORY","url":"http://www.debian.org/security/2004/dsa-501"},{"type":"ADVISORY","url":"http://www.debian.org/security/2004/dsa-502"},{"type":"ADVISORY","url":"http://www.guninski.com/exim1.html"},{"type":"EVIDENCE","url":"http://www.guninski.com/exim1.html"},{"type":"FIX","url":"http://www.debian.org/security/2004/dsa-501"},{"type":"FIX","url":"http://www.debian.org/security/2004/dsa-502"},{"type":"FIX","url":"http://www.guninski.com/exim1.html"},{"type":"WEB","url":"http://lists.grok.org.uk/pipermail/full-disclosure/2004-May/021015.html"},{"type":"WEB","url":"https://exchange.xforce.ibmcloud.com/vulnerabilities/16079"}],"schema_version":"1.7.5"}