Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-4507

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2012-4507
Last Modified 01 Mar 2013 12:00:00
Published 22 Oct 2012 07:55:07
Confidentiality Impact NONE NONE
Integrity Impact NONE NONE
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-4507

Summary

The strchr function in procmime.c in Claws Mail (aka claws-mail) 3.8.1 allows remote attackers to cause a denial of service (NULL pointer dereference and crash) via a crafted email.

Vulnerable Systems

Application

  • Claws-mail 3.8.1


References

MISC - https://bugzilla.redhat.com/show_bug.cgi?id=862578

CONFIRM - http://www.thewildbeast.co.uk/claws-mail/bugzilla/show_bug.cgi?id=2743

MLIST - [oss-security] 20121009 Re: CVE Request -- claws-mail -- NULL pointer derefence while processing email content.

MLIST - [oss-security] 20121009 CVE Request -- claws-mail -- NULL pointer derefence while processing email content.

MLIST - [oss-security] 20121009 Claws-mail security issue in message processing

SUSE - openSUSE-SU-2012:1374

BID - 55837


Last Updated: 27 May 2016 10:53:37