CVE-2005-2151

2005-07-0604:00:00

[email protected]

web.nvd.nist.gov

cve-2005-2151

courier mail server

spf records

dns failures

memory corruption

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:N/C:N/I:P/A:N

6.1 Medium

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

49.4%

JSON

spf.c in Courier Mail Server does not properly handle DNS failures when looking up Sender Policy Framework (SPF) records, which could allow attackers to cause memory corruption.

Affected configurations

NVD

Node

double_precision_incorporatedcourier_mail_serverMatch0.46

double_precision_incorporatedcourier_mail_serverMatch0.47

double_precision_incorporatedcourier_mail_serverMatch0.48

double_precision_incorporatedcourier_mail_serverMatch0.48.1

double_precision_incorporatedcourier_mail_serverMatch0.48.2

double_precision_incorporatedcourier_mail_serverMatch0.49.0

double_precision_incorporatedcourier_mail_serverMatch0.50.0

CPENameOperatorVersion
double_precision_incorporated:courier_mail_serverdouble precision incorporated courier mail servereq0.46
double_precision_incorporated:courier_mail_serverdouble precision incorporated courier mail servereq0.47
double_precision_incorporated:courier_mail_serverdouble precision incorporated courier mail servereq0.48
double_precision_incorporated:courier_mail_serverdouble precision incorporated courier mail servereq0.48.1
double_precision_incorporated:courier_mail_serverdouble precision incorporated courier mail servereq0.48.2
double_precision_incorporated:courier_mail_serverdouble precision incorporated courier mail servereq0.49.0
double_precision_incorporated:courier_mail_serverdouble precision incorporated courier mail servereq0.50.0

CPE	Name	Operator	Version
double_precision_incorporated:courier_mail_server	double precision incorporated courier mail server	eq	0.46
double_precision_incorporated:courier_mail_server	double precision incorporated courier mail server	eq	0.47
double_precision_incorporated:courier_mail_server	double precision incorporated courier mail server	eq	0.48
double_precision_incorporated:courier_mail_server	double precision incorporated courier mail server	eq	0.48.1
double_precision_incorporated:courier_mail_server	double precision incorporated courier mail server	eq	0.48.2
double_precision_incorporated:courier_mail_server	double precision incorporated courier mail server	eq	0.49.0
double_precision_incorporated:courier_mail_server	double precision incorporated courier mail server	eq	0.50.0