Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.1
CVSSv2

CVE-2008-7258

Published: 20/08/2010 Updated: 11/04/2024
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
VMScore: 215
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Ssmtp

Vulnerability Summary

The standardise function in Anibal Monsalve Salazar sSMTP 2.61 and 2.62 allows local users to cause a denial of service (application exit) via an e-mail message containing a long line that begins with a . (dot) character. NOTE: CVE disputes this issue because it is solely a usability problem for senders of messages with certain long lines, and has no security impact

Vulnerable Product Search on Vulmon Subscribe to Product

anibal monsalve salaz ssmtp 2.61

anibal monsalve salaz ssmtp 2.62

Vendor Advisories

Debian CVElist Bug Report Logs: CVE-2008-7258 buffer overflow
Debian Bug report logs - #591515 CVE-2008-7258 buffer overflow Package: ssmtp; Maintainer for ssmtp is Anibal Monsalve Salazar <anibal@debianorg>; Source for ssmtp is src:ssmtp (PTS, buildd, popcon) Reported by: Michael Gilbert <michaelsgilbert@gmailcom> Date: Tue, 3 Aug 2010 17:51:01 UTC Severity: normal Tags: ...

Exploits

Exploit DB: sSMTP 2.62 - 'standardize()' Buffer Overflow
source: wwwsecurityfocuscom/bid/41965/info sSMTP is prone to a remote buffer-overflow vulnerability An attacker can exploit this issue to execute arbitrary code within the context of the affected application Failed exploit attempts will result in a denial-of-service condition sSMTP 262 is vulnerable; other versions may also be affe ...

References

CWE-20http://marc.info/?l=oss-security&m=128077707318085&w=2http://www.securityfocus.com/bid/41965https://bugzilla.redhat.com/show_bug.cgi?id=582236https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2008-7258http://marc.info/?l=oss-security&m=128013391907262&w=2https://bugs.launchpad.net/ubuntu/+source/ssmtp/+bug/282424http://www.openwall.com/lists/oss-security/2010/08/19/6http://patch-tracker.debian.org/patch/series/view/ssmtp/2.62-3/345780-standardise-bufsizehttp://marc.info/?l=oss-security&m=128017258305041&w=2http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045422.htmlhttp://secunia.com/advisories/41009http://lists.fedoraproject.org/pipermail/package-announce/2010-August/045407.htmlhttps://bugs.debian.org/cgi-bin/bugreport.cgi?bug=591515https://nvd.nist.govhttps://www.exploit-db.com/exploits/34375/
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2006-4304CVE-2024-4240arbitrary CVE-2024-31601XSSCVE-2023-20198CVE-2024-4256CVE-2024-3342encryption
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook