CVE-2003-0057
Multiple buffer overflows in Hypermail 2 before 2.1.6 allows remote attackers to cause a denial of service and possibly execute arbitrary code (1) via a long attachment filename that is not properly handled by the hypermail executable, or (2) by connecting to the mail CGI program from an IP address that reverse-resolves to a long hostname.
| Software | From | Fixed in |
|---|---|---|
| hypermail / hypermail | 2.1.5 | 2.1.5.x |
| hypermail / hypermail | 2.1.3 | 2.1.3.x |
| hypermail / hypermail | 2.1.1 | 2.1.1.x |
| hypermail / hypermail | 2.1_.0 | 2.1_.0.x |
| hypermail / hypermail | 2.0b25 | 2.0b25.x |
| hypermail / hypermail | 2.1.4 | 2.1.4.x |
| hypermail / hypermail | 2.1.2 | 2.1.2.x |
- http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0042.html
- http://marc.info/?l=bugtraq&m=104369136703903&w=2
- http://secunia.com/advisories/8030
- http://www.debian.org/security/2003/dsa-248
- http://www.securityfocus.com/bid/6689
- http://www.securityfocus.com/bid/6690
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11157
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11158
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime