header-logo
Suggest Exploit
vendor:
Mailtraq
by:
SecurityFocus
7.5
CVSS
HIGH
Format String Vulnerability
78
CWE
Product Name: Mailtraq
Affected Version From: 2.1
Affected Version To: 2.1
Patch Exists: YES
Related CWE: CVE-2002-0991
CPE: o:mailtraq:mailtraq
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2002

Mailtraq Format String Vulnerability

Mailtraq is vulnerable to a format string vulnerability when handling SMTP protocol fields. This vulnerability can be exploited by sending specially crafted strings to the vulnerable server, which can cause the system to become unstable and crash, resulting in a denial of service.

Mitigation:

Upgrade to the latest version of Mailtraq.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/7926/info

It has been reported that Mailtraq does not reliably handle format strings in some SMTP protocol fields. This may cause a system to become unstable and crash, allowing a remote attacker to deny service to the system.

@@%s%p%n
%s%p%n

Navigation

Suggest Exploit

Services By CQR