Ultrafunk · Ultrafunk Popcorn · CVE-2009-1647
Name of the Vulnerable Software and Affected Versions:
Ultrafunk Popcorn version 1.87
Description:
The issue is related to a heap-based buffer overflow in the popcorn.exe component, which can be triggered by remote POP3 servers sending a long string in a +OK response, leading to a denial of service (application crash).
Recommendations:
For Ultrafunk Popcorn version 1.87, at the moment, there is no information about a newer version that contains a fix for this vulnerability.