CVE-2019-19977

Опубликовано: 26 дек. 2019

Источник: ubuntu

Приоритет: medium

EPSS Низкий

CVSS2: 7.5

CVSS3: 9.8

Описание

libESMTP through 1.0.6 mishandles domain copying into a fixed-size buffer in ntlm_build_type_2 in ntlm/ntlmstruct.c, as demonstrated by a stack-based buffer over-read.

Релиз	Статус	Примечание
bionic	not-affected	code not compiled
devel	not-affected	code not compiled
disco	not-affected	code not compiled
eoan	not-affected	code not compiled
esm-infra-legacy/trusty	not-affected	code not compiled
esm-infra/bionic	not-affected	code not compiled
esm-infra/xenial	not-affected	code not compiled
precise/esm	DNE
trusty	ignored	end of standard support
trusty/esm	not-affected	code not compiled

Показывать по

Ссылки на источники

EPSS

Процентиль: 52%

0.0029

Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

Связанные уязвимости

CVE-2019-19977

CVSS3: 7.4

redhat

около 6 лет назад

libESMTP through 1.0.6 mishandles domain copying into a fixed-size buffer in ntlm_build_type_2 in ntlm/ntlmstruct.c, as demonstrated by a stack-based buffer over-read.

CVE-2019-19977

CVSS3: 9.8

nvd

около 6 лет назад

libESMTP through 1.0.6 mishandles domain copying into a fixed-size buffer in ntlm_build_type_2 in ntlm/ntlmstruct.c, as demonstrated by a stack-based buffer over-read.

CVE-2019-19977

CVSS3: 9.8

msrc

около 4 лет назад

Описание отсутствует

CVE-2019-19977

CVSS3: 9.8

debian

около 6 лет назад

libESMTP through 1.0.6 mishandles domain copying into a fixed-size buf ...

openSUSE-SU-2021:2937-1

suse-cvrf

больше 4 лет назад

Security update for libesmtp

EPSS

Процентиль: 52%

0.0029

Низкий

7.5 High

CVSS2

9.8 Critical

CVSS3

CVE-2019-19977

Описание

Пакет libesmtp

Ссылки на источники

Связанные уязвимости