CVE-2008-7258
CVE-2008-7258
The standardise function in Anibal Monsalve Salazar sSMTP 2.61 and 2.62 allows local users to cause a denial of service (application exit) via an e-mail message containing a long line that begins with a . (dot) character. NOTE: CVE disputes this issue because it is solely a usability problem for senders of messages with certain long lines, and has no security impact
Affected products
n/a · n/apublic PoCs found — 1
exploitdbwww.exploit-db.com/exploits/34375unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045407.htmlhttp://lists.fedoraproject.org/pipermail/package-announce/2010-August/045422.htmlhttp://marc.info/?l=oss-security&m=128013391907262&w=2http://marc.info/?l=oss-security&m=128017258305041&w=2http://marc.info/?l=oss-security&m=128077707318085&w=2http://patch-tracker.debian.org/patch/series/view/ssmtp/2.62-3/345780-standardise-bufsizehttps://bugs.launchpad.net/ubuntu/+source/ssmtp/+bug/282424https://bugzilla.redhat.com/show_bug.cgi?id=582236https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2008-7258http://secunia.com/advisories/41009http://www.openwall.com/lists/oss-security/2010/08/19/6http://www.securityfocus.com/bid/41965