CVE-2006-1173
CVE-2006-1173
Sendmail before 8.13.7 allows remote attackers to cause a denial of service via deeply nested, malformed multipart MIME messages that exhaust the stack during the recursive mime8to7 function for performing 8-bit to 7-bit conversion, which prevents Sendmail from delivering queued messages and might lead to disk consumption by core dump files.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:17.sendmail.ascftp://patches.sgi.com/support/free/security/advisories/20060601-01-Pftp://patches.sgi.com/support/free/security/advisories/20060602-01-U.aschttp://itrc.hp.com/service/cki/docDisplay.do?docId=c00692635http://lists.suse.com/archive/suse-security-announce/2006-Jun/0006.htmlhttp://secunia.com/advisories/15779http://secunia.com/advisories/20473http://secunia.com/advisories/20641http://secunia.com/advisories/20650http://secunia.com/advisories/20651http://secunia.com/advisories/20654http://secunia.com/advisories/20673