CVE-2007-3796 in MailMarshal SMTPالمعلومات

الملخص

بحسب MITRE

The password reset feature in the Spam Quarantine HTTP interface for MailMarshal SMTP 6.2.0.x before 6.2.1 allows remote attackers to modify arbitrary account information via a UserId variable with a large amount of trailing whitespace followed by a malicious value, which triggers SQL buffer truncation due to length inconsistencies between variables.

VulDB is the best source for vulnerability data and more expert information about this specific topic.

حجز

16/07/2007

إفشاء

17/07/2007

الاعتدال

تمت الموافقة

إدخال

VDB-37877

EPSS

0.01894

KEV

لا

النشاطات

منخفض جدًا

المصادر

Might our Artificial Intelligence support you?

Check our Alexa App!