CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
AI Score
Confidence
High
EPSS
Percentile
91.7%
Sympa before 5.4 allows remote attackers to cause a denial of service (daemon crash) via an e-mail message with a malformed value of the Content-Type header and unspecified other headers. NOTE: some of these details are obtained from third party information.
Vendor | Product | Version | CPE |
---|---|---|---|
sympa | sympa | 5.3b.1 | cpe:/a:sympa:sympa:5.3b.1::: |
sympa | sympa | 5.3 | cpe:/a:sympa:sympa:5.3::: |
sympa | sympa | 4.0.a1 | cpe:/a:sympa:sympa:4.0.a1::: |
sympa | sympa | 2.7.2 | cpe:/a:sympa:sympa:2.7.2::: |
sympa | sympa | 3.0a | cpe:/a:sympa:sympa:3.0a::: |
sympa | sympa | 2.3.3 | cpe:/a:sympa:sympa:2.3.3::: |
sympa | sympa | 3.3.4b.3 | cpe:/a:sympa:sympa:3.3.4b.3::: |
sympa | sympa | 2.2.3b | cpe:/a:sympa:sympa:2.2.3b::: |
sympa | sympa | 4.0.b1 | cpe:/a:sympa:sympa:4.0.b1::: |
sympa | sympa | 5.3.2 | cpe:/a:sympa:sympa:5.3.2::: |
secunia.com/advisories/29575
secunia.com/advisories/30910
sourcesup.cru.fr/tracker/?func=detail&group_id=23&aid=3702&atid=167
www.debian.org/security/2008/dsa-1600
www.mandriva.com/security/advisories?name=MDVSA-2008:133
www.securityfocus.com/bid/28539
www.sympa.org/distribution/latest-stable/NEWS
www.vupen.com/english/advisories/2008/1080/references
exchange.xforce.ibmcloud.com/vulnerabilities/41561