CVE-2002-1721

Опубликовано: 31 дек. 2002

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Низкий

Описание

Off-by-one error in alterMIME 0.1.10 and 0.1.11 allows remote attackers to cause a denial of service (crash) via an x-header that causes snprintf overwrite the FFGET_FILE variable with a (null) byte.

Ссылки

http://www.pldaniels.com/altermime/CHANGELOG
Release Notes
http://www.securityfocus.com/bid/4650
Broken Link
Patch
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/8992
Third Party Advisory
VDB Entry
http://www.pldaniels.com/altermime/CHANGELOG
Release Notes
http://www.securityfocus.com/bid/4650
Broken Link
Patch
Third Party Advisory
VDB Entry
https://exchange.xforce.ibmcloud.com/vulnerabilities/8992
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:pldaniels:altermime:0.1.10:*:*:*:*:*:*:*

cpe:2.3:a:pldaniels:altermime:0.1.11:*:*:*:*:*:*:*

EPSS

Процентиль: 80%

0.01414

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-193

Связанные уязвимости

CVE-2002-1721

CVSS3: 7.5

debian

почти 23 года назад

Off-by-one error in alterMIME 0.1.10 and 0.1.11 allows remote attacker ...

GHSA-vpwh-45x6-9gjg

CVSS3: 7.5

github

больше 3 лет назад

Off-by-one error in alterMIME 0.1.10 and 0.1.11 allows remote attackers to cause a denial of service (crash) via an x-header that causes snprintf overwrite the FFGET_FILE variable with a (null) byte.

EPSS

Процентиль: 80%

0.01414

Низкий

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-193