Back to search
CVE-2002-1175
Published: Oct 1, 2002
Modified: Aug 8, 2024
PUBLISHED
Description
The getmxrecord function in Fetchmail 6.0.0 and earlier does not properly check the boundary of a particular malformed DNS packet from a malicious DNS server, which allows remote attackers to cause a denial of service (crash) when Fetchmail attempts to read data beyond the expected boundary.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
MDKSA-2002:063
vendor-advisory
x_refsource_MANDRAKE
20020929 Advisory 03/2002: Fetchmail remote vulnerabilities
mailing-list
x_refsource_BUGTRAQ
RHSA-2002:215
vendor-advisory
x_refsource_REDHAT
fetchmail-multidrop-bo(10203)
vdb-entry
x_refsource_XF
CLA-2002:531
vendor-advisory
x_refsource_CONECTIVA
ESA-20021003-023
vendor-advisory
x_refsource_ENGARDE
5826
vdb-entry
x_refsource_BID
DSA-171
vendor-advisory
x_refsource_DEBIAN
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now