CVE-2004-0156

EPSS 1.7%

ssmtp - format string

Published: 6/1/2004Modified: 4/28/2026

Description

Format string vulnerabilities in the (1) die or (2) log_event functions for ssmtp before 2.50.6 allow remote mail relays to cause a denial of service and possibly execute arbitrary code.

Affected packages (2)

Debian/ssmtpfrom 0, < 2.60.7
Debian/ssmtpfrom 0, < 2.50.6.1

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2004-0156