Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5006

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-5006
Last Modified 23 Jan 2009 01:43:17
Published 10 Nov 2008 09:12:56
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-5006

Summary

smtp.c in the c-client library in University of Washington IMAP Toolkit 2007b allows remote SMTP servers to cause a denial of service (NULL pointer dereference and application crash) by responding to the QUIT command with a close of the TCP connection instead of the expected 221 response code.

Vulnerable Systems

Application

  • University Of Washington Imap Toolkit 2007b


References

XF - imap-toolkit-smtp-dos(46604)

BID - 32280

MLIST - [oss-security] 20081103 Re: CVE request - uw-imap

MANDRIVA - MDVSA-2009:146

DEBIAN - DSA-1685

SECUNIA - 33142


Last Updated: 27 May 2016 10:48:40