Computer Security
[EN] securityvulns.ru no-pyccku


B21Soft BASP21 SMTP lines injections
Published:29.03.2007
Source:
SecurityVulns ID:7495
Type:remote
Threat Level:
5/10
Description:Invalid handling of "." character allows to inject SMTP commands into message.
Affected:B21SOFT : BASP21 2003.0211
 B21SOFT : BASP21 Pro 1.0
CVE:CVE-2007-1713 (CRLF injection vulnerability in BSMTP.DLL in B21Soft BASP21 2003.0211, and BASP21 Pro 1.0.702.27 and earlier, allows remote attackers to inject arbitrary headers into e-mail messages via CRLF sequences in Subject lines.)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod