Computer Security
[EN] securityvulns.ru no-pyccku


fetchmail resources exhaustion
Published:11.05.2010
Source:
SecurityVulns ID:10826
Type:client
Threat Level:
4/10
Description:Memory exhaustion on debugging information printing.
Affected:FETCHMAIL : fetchmail 6.3
CVE:CVE-2010-1167 (fetchmail 4.6.3 through 6.3.16, when debug mode is enabled, does not properly handle invalid characters in a multi-character locale, which allows remote attackers to cause a denial of service (memory consumption and application crash) via a crafted (1) message header or (2) POP3 UIDL list.)
Original documentdocumentMatthias Andree, fetchmail security announcement fetchmail-SA-2010-02 (CVE-2010-1167) (11.05.2010)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod