Back to search
CVE-2006-1173
Published: Jun 7, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
Sendmail before 8.13.7 allows remote attackers to cause a denial of service via deeply nested, malformed multipart MIME messages that exhaust the stack during the recursive mime8to7 function for performing 8-bit to 7-bit conversion, which prevents Sendmail from delivering queued messages and might lead to disk consumption by core dump files.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
IY85415
vendor-advisory
x_refsource_AIXAPAR
HPSBTU02116
vendor-advisory
x_refsource_HP
DSA-1155
vendor-advisory
x_refsource_DEBIAN
[3.8] 008: SECURITY FIX: June 15, 2006
vendor-advisory
x_refsource_OPENBSD
20684
third-party-advisory
x_refsource_SECUNIA
HPSBUX02124
vendor-advisory
x_refsource_HP
ADV-2006-2388
vdb-entry
x_refsource_VUPEN
20726
third-party-advisory
x_refsource_SECUNIA
oval:org.mitre.oval:def:11253
vdb-entry
signature
x_refsource_OVAL
ADV-2006-2351
vdb-entry
x_refsource_VUPEN
21327
third-party-advisory
x_refsource_SECUNIA
RHSA-2006:0515
vendor-advisory
x_refsource_REDHAT
ADV-2006-2389
vdb-entry
x_refsource_VUPEN
21647
third-party-advisory
x_refsource_SECUNIA
http://www.fortinet.com/FortiGuardCenter/advisory/FG-2006-18.html
x_refsource_CONFIRM
https://issues.rpath.com/browse/RPL-526
x_refsource_CONFIRM
20651
third-party-advisory
x_refsource_SECUNIA
20683
third-party-advisory
x_refsource_SECUNIA
20650
third-party-advisory
x_refsource_SECUNIA
http://support.avaya.com/elmodocs2/security/ASA-2006-148.htm
x_refsource_CONFIRM
20782
third-party-advisory
x_refsource_SECUNIA
ADV-2006-3135
vdb-entry
x_refsource_VUPEN
1016295
vdb-entry
x_refsource_SECTRACK
20694
third-party-advisory
x_refsource_SECUNIA
20473
third-party-advisory
x_refsource_SECUNIA
ADV-2006-2189
vdb-entry
x_refsource_VUPEN
20060721 rPSA-2006-0134-1 sendmail sendmail-cf
mailing-list
x_refsource_BUGTRAQ
ADV-2006-2798
vdb-entry
x_refsource_VUPEN
102460
vendor-advisory
x_refsource_SUNALERT
http://www.sendmail.com/security/advisories/SA-200605-01.txt.asc
x_refsource_CONFIRM
MDKSA-2006:104
vendor-advisory
x_refsource_MANDRIVA
sendmail-multipart-mime-dos(27128)
vdb-entry
x_refsource_XF
20673
third-party-advisory
x_refsource_SECUNIA
http://www.f-secure.com/security/fsc-2006-5.shtml
x_refsource_CONFIRM
20060621 Re: Sendmail MIME DoS vulnerability
mailing-list
x_refsource_BUGTRAQ
21612
third-party-advisory
x_refsource_SECUNIA
20654
third-party-advisory
x_refsource_SECUNIA
ADV-2006-2390
vdb-entry
x_refsource_VUPEN
SSA:2006-166-01
vendor-advisory
x_refsource_SLACKWARE
GLSA-200606-19
vendor-advisory
x_refsource_GENTOO
18433
vdb-entry
x_refsource_BID
20675
third-party-advisory
x_refsource_SECUNIA
SUSE-SA:2006:032
vendor-advisory
x_refsource_SUSE
20060620 Sendmail MIME DoS vulnerability
mailing-list
x_refsource_BUGTRAQ
SSRT061159
vendor-advisory
x_refsource_HP
VU#146718
third-party-advisory
x_refsource_CERT-VN
SSRT061135
vendor-advisory
x_refsource_HP
15779
third-party-advisory
x_refsource_SECUNIA
20641
third-party-advisory
x_refsource_SECUNIA
20679
third-party-advisory
x_refsource_SECUNIA
26197
vdb-entry
x_refsource_OSVDB
21042
third-party-advisory
x_refsource_SECUNIA
21160
third-party-advisory
x_refsource_SECUNIA
IY85930
vendor-advisory
x_refsource_AIXAPAR
20060624 Re: Sendmail MIME DoS vulnerability
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now