NetWin dMailWeb and cwMail 2.6i and earlier allows remote attackers to cause a denial of service via a long POP parameter (pophost).
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Cwmail | Netwin | 2.5e (including) | 2.5e (including) |
| Cwmail | Netwin | 2.6g (including) | 2.6g (including) |
| Cwmail | Netwin | 2.6i (including) | 2.6i (including) |
| Cwmail | Netwin | 2.6j (including) | 2.6j (including) |
| Dmailweb | Netwin | 2.5e (including) | 2.5e (including) |
| Dmailweb | Netwin | 2.6g (including) | 2.6g (including) |
| Dmailweb | Netwin | 2.6i (including) | 2.6i (including) |
| Dmailweb | Netwin | 2.6j (including) | 2.6j (including) |
References
- http://www.securityfocus.com/bid/1376
- http://www.securityfocus.com/templates/archive.pike?list=1\u0026date=2000-06-15\u0026msg=4.1.20000621113334.00996820%40qlink.queensu.ca
- http://www.securityfocus.com/bid/1376
- http://www.securityfocus.com/templates/archive.pike?list=1\u0026date=2000-06-15\u0026msg=4.1.20000621113334.00996820%40qlink.queensu.ca