[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249966

 
 

909

 
 

195636

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2007-4565Date: (C)2007-08-27   (M)2023-12-22


sink.c in fetchmail before 6.3.9 allows context-dependent attackers to cause a denial of service (NULL dereference and application crash) by refusing certain warning messages that are sent over SMTP.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 5.0
Exploit Score: 10.0
Impact Score: 2.9
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: NONE
Integrity: NONE
Availability: PARTIAL
  
Reference:
SECTRACK-1018627
2007-0028
http://www.securityfocus.com/archive/1/478798/100/0/threaded
http://www.securityfocus.com/archive/1/493388/100/0/threaded
BID-25495
SECUNIA-27399
SREASON-3074
SECUNIA-33937
OSVDB-45833
ADV-2007-3032
ADV-2009-0422
APPLE-SA-2009-02-12
DSA-1377
MDKSA-2007:179
SUSE-SR:2007:022
USN-520-1
fetchmail-warning-dos(36385)
http://fetchmail.berlios.de/fetchmail-SA-2007-02.txt
http://mknod.org/svn/fetchmail/branches/BRANCH_6-3/fetchmail-SA-2007-02.txt
http://support.apple.com/kb/HT3438
https://issues.rpath.com/browse/RPL-1690
oval:org.mitre.oval:def:10528

CPE    114
cpe:/a:fetchmail:fetchmail:6.1.0
cpe:/a:fetchmail:fetchmail:6.1.3
cpe:/a:fetchmail:fetchmail:6.2.9:rc10
cpe:/a:fetchmail:fetchmail:4.5.1
...
OVAL    7
oval:org.secpod.oval:def:202766
oval:org.secpod.oval:def:202755
oval:org.secpod.oval:def:202101
oval:org.secpod.oval:def:202176
...

© SecPod Technologies