CVE-2006-2659

EPSS 3.6%

courier - programming error

Published: 5/30/2006Modified: 3/9/2026

Also known as:DSA-1101DEBIAN-CVE-2006-2659

Description

libs/comverp.c in Courier MTA before 0.53.2 allows attackers to cause a denial of service (CPU consumption) via unknown vectors involving usernames that contain the "=" (equals) character, which is not properly handled during encoding.

Affected packages (2)

Debian/courierfrom 0, < 0.53.2-1
Debian/courierfrom 0, < 0.37.3-2.9

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2006-2659