Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0320


Vulnerability Score 5.0 5.0
CVE Id CVE-2000-0320
Last Modified 10 Sep 2008 03:04:04
Published 21 Apr 2000 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



Qpopper 2.53 and 3.0 does not properly identify the \n string which identifies the end of message text, which allows a remote attacker to cause a denial of service or corrupt mailboxes via a message line that is 1023 characters long and ends in \n.

Vulnerable Systems


  • Qualcomm Qpopper 2.53

  • Qualcomm Qpopper 3.0


BUGTRAQ - 20000421 unsafe fgets() in qpopper

BID - 1133

Last Updated: 27 May 2016 10:35:40