header-logo
Suggest Exploit
vendor:
PHPMailer
by:
SecurityFocus
7.5
CVSS
HIGH
Denial-of-Service
400
CWE
Product Name: PHPMailer
Affected Version From: 1.72
Affected Version To: 1.72
Patch Exists: YES
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2004

PHPMailer Remote Denial-of-Service Vulnerability

An attacker can send an email message with a malformed header field to initiate an infinite loop in the application. This eventually leads to a crash due to resource exhaustion.

Mitigation:

Upgrade to the latest version of PHPMailer.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/13805/info

PHPMailer is affected by a remote denial-of-service vulnerability.

An attacker can send an email message with a malformed header field to initiate an infinite loop in the application. This eventually leads to a crash due to resource exhaustion.

PHPMailer 1.72 and prior versions are affected by this issue. 

From: AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA... x 998

Navigation

Suggest Exploit

Services By CQR