CVE DATABASE / CVE-2004-2504
CVE-2004-2504
CVSS 7.2 · HIGH
Summary
The GUI in Alt-N Technologies MDaemon 7.2 and earlier, including 6.8, executes child processes such as NOTEPAD.EXE with SYSTEM privileges when users create new files, which allows local users with physical access to gain privileges.
CVSS 2.0 breakdown
| Base score | 7.2 (HIGH) |
| Vector | AV:L/AC:L/Au:N/C:C/I:C/A:C |
| Attack vector | LOCAL |
| Attack complexity | LOW |
| Confidentiality | COMPLETE |
| Integrity | COMPLETE |
| Availability | COMPLETE |
Affected products
Alt-n mdaemon
Check this CVE live
Use our free CVE Lookup tool for the latest NVD record, or browse the full CISA KEV catalog.
References
- http://archives.neohapsis.com/archives/bugtraq/2004-11/0385.html
- http://archives.neohapsis.com/archives/fulldisclosure/2004-11/1324.html
- http://archives.neohapsis.com/archives/fulldisclosure/2004-11/1353.html
- http://secunia.com/advisories/13225
- http://securitytracker.com/id?1012350
- http://www.osvdb.org/12158
- http://www.securityfocus.com/bid/11736
- https://exchange.xforce.ibmcloud.com/vulnerabilities/18287
Data: NIST NVD. NVD last modified 2026-04-16. Always verify against the vendor advisory before acting.