Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2003-0540

Опубликовано: 27 авг. 2003
Источник: nvd
CVSS2: 5
EPSS Средний

Описание

The address parser code in Postfix 1.1.12 and earlier allows remote attackers to cause a denial of service (lock) via (1) a malformed envelope address to a local host that would generate a bounce and contains the ".!" string in the MAIL FROM or Errors-To headers, which causes nqmgr to lock up, or (2) via a valid MAIL FROM with a RCPT TO containing a ".!" string, which causes an instance of the SMTP listener to lock up.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:wietse_venema:postfix:1.0.21:*:*:*:*:*:*:*
cpe:2.3:a:wietse_venema:postfix:1.1.11:*:*:*:*:*:*:*
cpe:2.3:a:wietse_venema:postfix:1.1.12:*:*:*:*:*:*:*
cpe:2.3:a:wietse_venema:postfix:1999-09-06:*:*:*:*:*:*:*
cpe:2.3:a:wietse_venema:postfix:1999-12-31:*:*:*:*:*:*:*
cpe:2.3:a:wietse_venema:postfix:2000-02-28:*:*:*:*:*:*:*
cpe:2.3:a:wietse_venema:postfix:2001-11-15:*:*:*:*:*:*:*
cpe:2.3:o:conectiva:linux:7.0:*:*:*:*:*:*:*
cpe:2.3:o:conectiva:linux:8.0:*:*:*:*:*:*:*

EPSS

Процентиль: 98%
0.57494
Средний

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

redhat логотип

CVE-2003-0540

redhat
почти 22 года назад

The address parser code in Postfix 1.1.12 and earlier allows remote attackers to cause a denial of service (lock) via (1) a malformed envelope address to a local host that would generate a bounce and contains the ".!" string in the MAIL FROM or Errors-To headers, which causes nqmgr to lock up, or (2) via a valid MAIL FROM with a RCPT TO containing a ".!" string, which causes an instance of the SMTP listener to lock up.

debian логотип

CVE-2003-0540

debian
почти 22 года назад

The address parser code in Postfix 1.1.12 and earlier allows remote at ...

github логотип

GHSA-cgrr-3rc7-3h4r

github
около 3 лет назад

The address parser code in Postfix 1.1.12 and earlier allows remote attackers to cause a denial of service (lock) via (1) a malformed envelope address to a local host that would generate a bounce and contains the ".!" string in the MAIL FROM or Errors-To headers, which causes nqmgr to lock up, or (2) via a valid MAIL FROM with a RCPT TO containing a ".!" string, which causes an instance of the SMTP listener to lock up.

EPSS

Процентиль: 98%
0.57494
Средний

5 Medium

CVSS2

Дефекты

NVD-CWE-Other