Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2151

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-2151
Last Modified 05 Sep 2008 04:51:01
Published 06 Jul 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2151

Summary

spf.c in Courier Mail Server does not properly handle DNS failures when looking up Sender Policy Framework (SPF) records, which could allow attackers to cause memory corruption.

Vulnerable Systems

Application

  • Double Precision Incorporated Courier Mail Server 0.46

  • Double Precision Incorporated Courier Mail Server 0.47

  • Double Precision Incorporated Courier Mail Server 0.48

  • Double Precision Incorporated Courier Mail Server 0.48.1

  • Double Precision Incorporated Courier Mail Server 0.48.2

  • Double Precision Incorporated Courier Mail Server 0.49.0

  • Double Precision Incorporated Courier Mail Server 0.50.0


References

MISC - http://www.courier-mta.org/?changelog.html

SECUNIA - 15901


Last Updated: 27 May 2016 10:40:25