CVE-2004-1558

Name of the Vulnerable Software and Affected Versions YPOPs! (aka YahooPOPS) versions 0.4 through 0.6

Description The issue is related to multiple stack-based buffer overflows that can be triggered by remote attackers. This can be achieved via a long POP3 USER command or an SMTP request. The overflows can cause a denial of service, leading to a crash, and potentially allow the execution of arbitrary code.

Recommendations For YPOPs! (aka YahooPOPS) versions 0.4 through 0.6, consider restricting access to the POP3 USER command and SMTP requests until a patch is available. As a temporary workaround, limiting the length of input for these commands may help minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.