CVE
- Id
- 5749
- CVE No.
- CVE-2002-1365
- Status
- Entry
- Description
- Heap-based buffer overflow in Fetchmail 6.1.3 and earlier does not account for the "@" character when determining buffer lengths for local addresses, which allows remote attackers to execute arbitrary code via a header with a large number of local addresses.
- Phase
- Votes
- Comments
Related CVE References
| Id | CVE Id | CVE No. | Reference | Actions |
|---|---|---|---|---|
| 31926 | 5749 | CVE-2002-1365 | BUGTRAQ:20021213 Advisory 05/2002: Another Fetchmail Remote Vulnerability | View |
| 31927 | 5749 | CVE-2002-1365 | URL:http://marc.info/?l=bugtraq&m=103979751818638&w=2 | View |
| 31928 | 5749 | CVE-2002-1365 | MISC:http://security.e-matters.de/advisories/052002.html | View |
| 31929 | 5749 | CVE-2002-1365 | BUGTRAQ:20021215 GLSA: fetchmail | View |
| 31930 | 5749 | CVE-2002-1365 | URL:http://marc.info/?l=bugtraq&m=104004858802000&w=2 | View |
| 31931 | 5749 | CVE-2002-1365 | CALDERA:CSSA-2003-001.0 | View |
| 31932 | 5749 | CVE-2002-1365 | URL:ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2003-001.0.txt | View |
| 31933 | 5749 | CVE-2002-1365 | CONECTIVA:CLA-2002:554 | View |
| 31934 | 5749 | CVE-2002-1365 | URL:http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000554 | View |
| 31935 | 5749 | CVE-2002-1365 | DEBIAN:DSA-216 | View |
| 31936 | 5749 | CVE-2002-1365 | URL:http://www.debian.org/security/2002/dsa-216 | View |
| 31937 | 5749 | CVE-2002-1365 | ENGARDE:ESA-20030127-002 | View |
| 31938 | 5749 | CVE-2002-1365 | IMMUNIX:IMNX-2003-7+-023-01 | View |
| 31939 | 5749 | CVE-2002-1365 | MANDRAKE:MDKSA-2003:011 | View |
| 31940 | 5749 | CVE-2002-1365 | URL:http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:011 | View |
| 31941 | 5749 | CVE-2002-1365 | REDHAT:RHSA-2002:293 | View |
| 31942 | 5749 | CVE-2002-1365 | URL:http://www.redhat.com/support/errata/RHSA-2002-293.html | View |
| 31943 | 5749 | CVE-2002-1365 | REDHAT:RHSA-2002:294 | View |
| 31944 | 5749 | CVE-2002-1365 | URL:http://www.redhat.com/support/errata/RHSA-2002-294.html | View |
| 31945 | 5749 | CVE-2002-1365 | REDHAT:RHSA-2003:155 | View |
| 31946 | 5749 | CVE-2002-1365 | URL:http://www.redhat.com/support/errata/RHSA-2003-155.html | View |
| 31947 | 5749 | CVE-2002-1365 | SUSE:SuSE-SA:2003:001 | View |
| 31948 | 5749 | CVE-2002-1365 | BID:6390 | View |
| 31949 | 5749 | CVE-2002-1365 | URL:http://www.securityfocus.com/bid/6390 | View |
| 31950 | 5749 | CVE-2002-1365 | XF:fetchmail-address-header-bo(10839) | View |
Related JVN
| Id | JVN No. | Title | Summary | CVE No. | CVE Id | CVSS_v2 | CVSS_v3 | JVN URL | Actions |
|---|---|---|---|---|---|---|---|---|---|
| 63994 | JVNDB-2002-000321 | Red Hat Linux の Fetchmail におけるヒープオーバーフローの脆弱性 | Red Hat Linux の Fetchmail には、ローカルアドレスの特定の文字の処理に不備があり、 ヘッダを意図的に作成したメールを送信することにより、ヒープオーバーフローが発生する脆弱性が存在します。 | CVE-2002-1365 | 5749 | 7.5 | http://jvndb.jvn.jp/ja/contents/2002/JVNDB-2002-000321.html | View |
