Описание
lib-mail/message-header-parser.c in Dovecot 1.2.x before 1.2.17 and 2.0.x before 2.0.13 does not properly handle '\0' characters in header names, which allows remote attackers to cause a denial of service (daemon crash or mailbox corruption) via a crafted e-mail message.
| Релиз | Статус | Примечание |
|---|---|---|
| dapper | ignored | end of life |
| devel | released | 1:2.0.13-1ubuntu1 |
| hardy | not-affected | 1:1.0.10-1ubuntu5.2 |
| lucid | released | 1:1.2.9-1ubuntu6.4 |
| maverick | released | 1:1.2.12-1ubuntu8.2 |
| natty | released | 1:1.2.15-3ubuntu2.1 |
| upstream | released | 2.0.13 |
Показывать по
EPSS
5 Medium
CVSS2
Связанные уязвимости
lib-mail/message-header-parser.c in Dovecot 1.2.x before 1.2.17 and 2.0.x before 2.0.13 does not properly handle '\0' characters in header names, which allows remote attackers to cause a denial of service (daemon crash or mailbox corruption) via a crafted e-mail message.
lib-mail/message-header-parser.c in Dovecot 1.2.x before 1.2.17 and 2.0.x before 2.0.13 does not properly handle '\0' characters in header names, which allows remote attackers to cause a denial of service (daemon crash or mailbox corruption) via a crafted e-mail message.
lib-mail/message-header-parser.c in Dovecot 1.2.x before 1.2.17 and 2. ...
lib-mail/message-header-parser.c in Dovecot 1.2.x before 1.2.17 and 2.0.x before 2.0.13 does not properly handle '\0' characters in header names, which allows remote attackers to cause a denial of service (daemon crash or mailbox corruption) via a crafted e-mail message.
EPSS
5 Medium
CVSS2