PT-2007-5520 · Qbik · Wingate
Published
2007-08-14
·
Updated
2018-10-15
·
CVE-2007-4335
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
Name of the Vulnerable Software and Affected Versions
Qbik WinGate versions 5.x through 6.2.1
Description
The issue is related to a format string vulnerability in the SMTP server component. This vulnerability allows remote attackers to cause a denial of service, specifically a service crash, by sending certain unexpected commands that contain format string specifiers. The crash occurs during error logging.
Recommendations
For Qbik WinGate versions 5.x through 6.2.1, update to version 6.2.2 or later to resolve the issue.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Wingate