PT-2002-2158 · Fetchmail · Fetchmail
Publicado
2002-10-01
·
Atualizado
2016-10-18
·
CVE-2002-1174
CVSS v2.0
7.5
Alta
| Vetor | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions:
Fetchmail versions 6.0.0 and earlier
Description:
The issue allows remote attackers to cause a denial of service or execute arbitrary code via long headers that are not properly processed by the
readheaders function, or via long Received: headers, which are not properly parsed by the parse received function.Recommendations:
For Fetchmail versions 6.0.0 and earlier, update to a version later than 6.0.0 to resolve the issue.
Correção
Buffer Overflow
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Fetchmail