CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
94.4%
Format string vulnerability in the SMTP server component in Qbik WinGate 5.x and 6.x before 6.2.2 allows remote attackers to cause a denial of service (service crash) via format string specifiers in certain unexpected commands, which trigger a crash during error logging.
secunia.com/advisories/26412
securityreason.com/securityalert/3001
www.harmonysecurity.com/HS-A007.html
www.securityfocus.com/archive/1/476011/100/0/threaded
www.securityfocus.com/bid/25272
www.securityfocus.com/bid/25303
www.vupen.com/english/advisories/2007/2859
www.wingate.com/news.php?id=50
exchange.xforce.ibmcloud.com/vulnerabilities/35950