Multiple stack-based buffer overflows in the get_header function in header.c for LHA 1.14, as used in products such as Barracuda Spam Firewall, allow remote attackers or local users to execute arbitrary code via long directory or file names in an LHA archive, which triggers the overflow when testing or extracting the archive.
Conclusion & alert: CVE-2004-0234 is rated High Exploit Risk (85.4/100): CVSS Critical severity, with high exploitation likelihood (EPSS 8.48%, 92th percentile). Core evidence: 1 public exploit reference(s) are indexed (Exploit-DB). Mandatory action: Public exploits are available—assess exposure, apply mitigations, and prioritize patching.
Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.
| EDB-ID | Source | Kind | Published | Link |
|---|---|---|---|---|
| — | nvd_ref | exploit_tag | Exploit-DB ↗ |
EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).
| # | Date | Old EPSS score | New EPSS score | Delta (New - Old) |
|---|---|---|---|---|
| 1 | 2025-03-30 | 10.12% | 8.48% | -1.64% |
| 2 | 2025-03-29 | 8.48% | 10.12% | +1.64% |
| 3 | 2025-03-19 | — | 8.48% | — |
Full EPSS history (8 records total)
CVSS metrics for this CVE.
| Base score | Version | Severity | Vector | Exploitability | Impact | Score source |
|---|---|---|---|---|---|---|
| 10.0 | 2.0 | HIGH |
|
10.0 | 10.0 | [email protected] |
| vendor | priority | summary | link |
|---|---|---|---|
redhat
|
high | — | https://access.redhat.com/security/cve/CVE-2004-0234 |
ubuntu
|
medium | CVE-2004-0234 medium priority: Ubuntu including 1 source packages (lha), 4 status rows across 4 suites (dapper, edgy, feisty, upstream): released 3, needs-triage 1. | https://ubuntu.com/security/CVE-2004-0234 |
| Vendor | Product | Version | Raw CPE |
|---|---|---|---|
| clearswift | mailsweeper | 4.0 | cpe:2.3:a:clearswift:mailsweeper:4.0:*:*:*:*:*:*:* |
| clearswift | mailsweeper | 4.1 | cpe:2.3:a:clearswift:mailsweeper:4.1:*:*:*:*:*:*:* |
| clearswift | mailsweeper | 4.2 | cpe:2.3:a:clearswift:mailsweeper:4.2:*:*:*:*:*:*:* |
| clearswift | mailsweeper | 4.3 | cpe:2.3:a:clearswift:mailsweeper:4.3:*:*:*:*:*:*:* |
| clearswift | mailsweeper | 4.3.3 | cpe:2.3:a:clearswift:mailsweeper:4.3.3:*:*:*:*:*:*:* |
| clearswift | mailsweeper | 4.3.4 | cpe:2.3:a:clearswift:mailsweeper:4.3.4:*:*:*:*:*:*:* |
| clearswift | mailsweeper | 4.3.5 | cpe:2.3:a:clearswift:mailsweeper:4.3.5:*:*:*:*:*:*:* |
| clearswift | mailsweeper | 4.3.6 | cpe:2.3:a:clearswift:mailsweeper:4.3.6:*:*:*:*:*:*:* |
| clearswift | mailsweeper | 4.3.6_sp1 | cpe:2.3:a:clearswift:mailsweeper:4.3.6_sp1:*:*:*:*:*:*:* |
| clearswift | mailsweeper | 4.3.7 | cpe:2.3:a:clearswift:mailsweeper:4.3.7:*:*:*:*:*:*:* |
| clearswift | mailsweeper | 4.3.8 | cpe:2.3:a:clearswift:mailsweeper:4.3.8:*:*:*:*:*:*:* |
| clearswift | mailsweeper | 4.3.10 | cpe:2.3:a:clearswift:mailsweeper:4.3.10:*:*:*:*:*:*:* |
| clearswift | mailsweeper | 4.3.11 | cpe:2.3:a:clearswift:mailsweeper:4.3.11:*:*:*:*:*:*:* |
| clearswift | mailsweeper | 4.3.13 | cpe:2.3:a:clearswift:mailsweeper:4.3.13:*:*:*:*:*:*:* |
| f-secure | f-secure_anti-virus | 4.51 | cpe:2.3:a:f-secure:f-secure_anti-virus:4.51:*:linux_gateways:*:*:*:*:* |
| f-secure | f-secure_anti-virus | 4.51 | cpe:2.3:a:f-secure:f-secure_anti-virus:4.51:*:linux_servers:*:*:*:*:* |
| f-secure | f-secure_anti-virus | 4.51 | cpe:2.3:a:f-secure:f-secure_anti-virus:4.51:*:linux_workstations:*:*:*:*:* |
| f-secure | f-secure_anti-virus | 4.52 | cpe:2.3:a:f-secure:f-secure_anti-virus:4.52:*:linux_gateways:*:*:*:*:* |
| f-secure | f-secure_anti-virus | 4.52 | cpe:2.3:a:f-secure:f-secure_anti-virus:4.52:*:linux_servers:*:*:*:*:* |
| f-secure | f-secure_anti-virus | 4.52 | cpe:2.3:a:f-secure:f-secure_anti-virus:4.52:*:linux_workstations:*:*:*:*:* |
| f-secure | f-secure_anti-virus | 4.60 | cpe:2.3:a:f-secure:f-secure_anti-virus:4.60:*:samba_servers:*:*:*:*:* |
| f-secure | f-secure_anti-virus | 5.5 | cpe:2.3:a:f-secure:f-secure_anti-virus:5.5:*:client_security:*:*:*:*:* |
| f-secure | f-secure_anti-virus | 5.41 | cpe:2.3:a:f-secure:f-secure_anti-virus:5.41:*:mimesweeper:*:*:*:*:* |
| f-secure | f-secure_anti-virus | 5.41 | cpe:2.3:a:f-secure:f-secure_anti-virus:5.41:*:windows_servers:*:*:*:*:* |
| f-secure | f-secure_anti-virus | 5.41 | cpe:2.3:a:f-secure:f-secure_anti-virus:5.41:*:workstations:*:*:*:*:* |
| f-secure | f-secure_anti-virus | 5.42 | cpe:2.3:a:f-secure:f-secure_anti-virus:5.42:*:mimesweeper:*:*:*:*:* |
| f-secure | f-secure_anti-virus | 5.42 | cpe:2.3:a:f-secure:f-secure_anti-virus:5.42:*:windows_servers:*:*:*:*:* |
| f-secure | f-secure_anti-virus | 5.42 | cpe:2.3:a:f-secure:f-secure_anti-virus:5.42:*:workstations:*:*:*:*:* |
| f-secure | f-secure_anti-virus | 5.52 | cpe:2.3:a:f-secure:f-secure_anti-virus:5.52:*:client_security:*:*:*:*:* |
| f-secure | f-secure_anti-virus | 6.21 | cpe:2.3:a:f-secure:f-secure_anti-virus:6.21:*:ms_exchange:*:*:*:*:* |
| f-secure | f-secure_anti-virus | 2003 | cpe:2.3:a:f-secure:f-secure_anti-virus:2003:*:*:*:*:*:*:* |
| f-secure | f-secure_anti-virus | 2004 | cpe:2.3:a:f-secure:f-secure_anti-virus:2004:*:*:*:*:*:*:* |
| f-secure | f-secure_for_firewalls | 6.20 | cpe:2.3:a:f-secure:f-secure_for_firewalls:6.20:*:*:*:*:*:*:* |
| f-secure | f-secure_internet_security | 2003 | cpe:2.3:a:f-secure:f-secure_internet_security:2003:*:*:*:*:*:*:* |
| f-secure | f-secure_internet_security | 2004 | cpe:2.3:a:f-secure:f-secure_internet_security:2004:*:*:*:*:*:*:* |
| f-secure | f-secure_personal_express | 4.5 | cpe:2.3:a:f-secure:f-secure_personal_express:4.5:*:*:*:*:*:*:* |
| f-secure | f-secure_personal_express | 4.6 | cpe:2.3:a:f-secure:f-secure_personal_express:4.6:*:*:*:*:*:*:* |
| f-secure | f-secure_personal_express | 4.7 | cpe:2.3:a:f-secure:f-secure_personal_express:4.7:*:*:*:*:*:*:* |
| f-secure | internet_gatekeeper | 6.31 | cpe:2.3:a:f-secure:internet_gatekeeper:6.31:*:*:*:*:*:*:* |
| f-secure | internet_gatekeeper | 6.32 | cpe:2.3:a:f-secure:internet_gatekeeper:6.32:*:*:*:*:*:*:* |
| rarlab | winrar | 3.20 | cpe:2.3:a:rarlab:winrar:3.20:*:*:*:*:*:*:* |
| redhat | lha | 1.14i-9 | cpe:2.3:a:redhat:lha:1.14i-9:*:i386:*:*:*:*:* |
| sgi | propack | 2.4 | cpe:2.3:a:sgi:propack:2.4:*:*:*:*:*:*:* |
| sgi | propack | 3.0 | cpe:2.3:a:sgi:propack:3.0:*:*:*:*:*:*:* |
| stalker | cgpmcafee | 3.2 | cpe:2.3:a:stalker:cgpmcafee:3.2:*:*:*:*:*:*:* |
| tsugio_okamoto | lha | 1.14 | cpe:2.3:a:tsugio_okamoto:lha:1.14:*:*:*:*:*:*:* |
| tsugio_okamoto | lha | 1.15 | cpe:2.3:a:tsugio_okamoto:lha:1.15:*:*:*:*:*:*:* |
| tsugio_okamoto | lha | 1.17 | cpe:2.3:a:tsugio_okamoto:lha:1.17:*:*:*:*:*:*:* |
| winzip | winzip | 9.0 | cpe:2.3:a:winzip:winzip:9.0:*:*:*:*:*:*:* |
| redhat | fedora_core | core_1.0 | cpe:2.3:o:redhat:fedora_core:core_1.0:*:*:*:*:*:*:* |