Computer Security

fetchmail resources exhaustion
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



fetchmail resources exhaustion
Published:11.05.2010
Source:BUGTRAQ
SecurityVulns ID:10826
Type:client
Level:4/10
Description:Memory exhaustion on debugging information printing.
Affected:FETCHMAIL : fetchmail 6.3
CVE:CVE-2010-1167 (fetchmail 4.6.3 through 6.3.16, when debug mode is enabled, does not properly handle invalid characters in a multi-character locale, which allows remote attackers to cause a denial of service (memory consumption and application crash) via a crafted (1) message header or (2) POP3 UIDL list.)
Original documentdocumentMatthias Andree, fetchmail security announcement fetchmail-SA-2010-02 (CVE-2010-1167) (11.05.2010)
Discuss:Read or add your comments to this news (0 comments)
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru