CVE-2010-1167

EPSS 0.78%

Published: 5/7/2010Modified: 4/28/2026

Description

fetchmail 4.6.3 through 6.3.16, when debug mode is enabled, does not properly handle invalid characters in a multi-character locale, which allows remote attackers to cause a denial of service (memory consumption and application crash) via a crafted (1) message header or (2) POP3 UIDL list.

Affected packages (1)

Debian/fetchmailfrom 0, < 6.3.16-2

References (1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2010-1167