CVE-2021-35525 in PostSRSdinformation

Résumé

par MITRE • 29/06/2021

PostSRSd before 1.11 allows a denial of service (subprocess hang) if Postfix sends certain long data fields such as multiple concatenated email addresses. NOTE: the PostSRSd maintainer acknowledges "theoretically, this error should never occur ... I'm not sure if there's a reliable way to trigger this condition by an external attacker, but it is a security bug in PostSRSd nevertheless."

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

Réserver

28/06/2021

Divulgation

29/06/2021

Modérer

accepté

Entrée

VDB-177716

CPE

prêt

EPSS

0.01622

KEV

non

Activités

très faible

Sources

Interested in the pricing of exploits?

See the underground prices here!