CVE-2014-0469

Name: CVE-2014-0469
Creator: NVD / NIST
Published: 2014-05-05T16:07:05.643+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 3.43%

Last modified Jun 17, 2026

CVE-2014-0469 is a vulnerability of currently unknown severity. Stack-based buffer overflow in a certain Debian patch for xbuffy before 3.3.bl.3.dfsg-9 allows remote attackers to execute arbitrary code via the subject of an email, possibly related to indent subject lines.. EPSS estimates a 3.43% chance of exploitation in the next 30 days.

Description

Stack-based buffer overflow in a certain Debian patch for xbuffy before 3.3.bl.3.dfsg-9 allows remote attackers to execute arbitrary code via the subject of an email, possibly related to indent subject lines.

Metrics

EPSS Probability

3.43%

87.4th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-119

Affected Software

Vendor	Product	Versions
Debian	Xbuffy	<= 3.3.bl.3.dfsg-8
Debian	Xbuffy	3.2.1-1
Debian	Xbuffy	3.2.1-2
Debian	Xbuffy	3.2.1-3
Debian	Xbuffy	3.2.1-4
Debian	Xbuffy	3.3-1
Debian	Xbuffy	3.3.b1.3-4
Debian	Xbuffy	3.3.bl.2-1
Debian	Xbuffy	3.3.bl.3-1
Debian	Xbuffy	3.3.bl.3-2
Debian	Xbuffy	3.3.bl.3-3
Debian	Xbuffy	3.3.bl.3-5
Debian	Xbuffy	3.3.bl.3-6
Debian	Xbuffy	3.3.bl.3-7
Debian	Xbuffy	3.3.bl.3-8
Debian	Xbuffy	3.3.bl.3-9
Debian	Xbuffy	3.3.bl.3-10
Debian	Xbuffy	3.3.bl.3-11
Debian	Xbuffy	3.3.bl.3-12
Debian	Xbuffy	3.3.bl.3-13
Debian	Xbuffy	3.3.bl.3-14
Debian	Xbuffy	3.3.bl.3-15
Debian	Xbuffy	3.3.bl.3-16
Debian	Xbuffy	3.3.bl.3-17
Debian	Xbuffy	3.3.bl.3-18
Debian	Xbuffy	3.3.bl.3-19
Debian	Xbuffy	3.3.bl.3-20
Debian	Xbuffy	3.3.bl.3-21
Debian	Xbuffy	3.3.bl.3-22
Debian	Xbuffy	3.3.bl.3-23
Debian	Xbuffy	3.3.bl.3-24
Debian	Xbuffy	3.3.bl.3-25
Debian	Xbuffy	3.3.bl.3.dfsg-1
Debian	Xbuffy	3.3.bl.3.dfsg-2
Debian	Xbuffy	3.3.bl.3.dfsg-3
Debian	Xbuffy	3.3.bl.3.dfsg-4
Debian	Xbuffy	3.3.bl.3.dfsg-5
Debian	Xbuffy	3.3.bl.3.dfsg-6
Debian	Xbuffy	3.3.bl.3.dfsg-7

References

Timeline

Published: May 5, 2014
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2014-0469?

How severe is CVE-2014-0469?

Severity scoring for CVE-2014-0469 is pending analysis. The EPSS model estimates a 3.43% probability of exploitation in the next 30 days.

How do I fix CVE-2014-0469?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2014-0469?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST