CVE Vulnerabilities

CVE-2002-1532

Published: Mar 31, 2003 | Modified: Sep 05, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:N/A:P
RedHat/V2
RedHat/V3
Ubuntu

The administrative web interface (STEMWADM) for SurfControl SuperScout Email Filter allows remote attackers to cause a denial of service (resource exhaustion) via a GET request without the terminating /r/n/r/n (CRLF) sequence, which causes the interface to wait for the sequence and blocks other users from accessing it.

Affected Software

Name Vendor Start Version End Version
Superscout_email_filter Surfcontrol 3.5 3.5
Superscout_email_filter Surfcontrol 3.5.1 3.5.1
Superscout_email_filter Surfcontrol 4.0 4.0

References