CVE-2005-1514
Description
commands.c in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long SMTP command without a space character, which causes an array to be referenced with a negative index.
Risk Information
Base Score
9.8
MODERATE
Vector
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS Score
Exploitation Probability
4.981
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| a secure, reliable, efficient, simple message transfer agent (USN-4621-1) qmail_1.06-6.2~deb10u1build0.16.04.1_i386.deb | Linux |
| a secure, reliable, efficient, simple message transfer agent (USN-4621-1) qmail_1.06-6.2~deb10u1build0.16.04.1_amd64.deb | Linux |
| a secure, reliable, efficient, simple message transfer agent (USN-4621-1) qmail_1.06-6.2~deb10u1build0.18.04.1_i386.deb | Linux |
| a secure, reliable, efficient, simple message transfer agent (USN-4621-1) qmail_1.06-6.2~deb10u1build0.18.04.1_amd64.deb | Linux |
| a secure, reliable, efficient, simple message transfer agent (USN-4556-1) qmail_1.06-6.2~deb10u1build0.20.04.1_amd64.deb | Linux |
| a secure, reliable, efficient, simple message transfer agent (USN-4556-1) qmail-uids-gids_1.06-6.2~deb10u1build0.20.04.1_all.deb | Linux |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234