CVE-2002-1175 in Fetchmailinfo

Summary

The getmxrecord function in Fetchmail 6.0.0 and earlier does not properly check the boundary of a particular malformed DNS packet from a malicious DNS server, which allows remote attackers to cause a denial of service (crash) when Fetchmail attempts to read data beyond the expected boundary.

Once again VulDB remains the best source for vulnerability data.

Responsible

Disclosure

10/11/2002

Moderation

VulDB entry created

Entries

VDB-19078

CPE

ready

CWE

CWE-20 (Confirmed)

CVSS

5.3

EPSS

0.01344

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2002-1175
NVD	https://nvd.nist.gov/vuln/detail/CVE-2002-1175
CVE Details	https://www.cvedetails.com/cve/CVE-2002-1175/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!