CVE-2010-1167

描述

fetchmail 4.6.3 through 6.3.16, when debug mode is enabled, does not properly handle invalid characters in a multi-character locale, which allows remote attackers to cause a denial of service (memory consumption and application crash) via a crafted (1) message header or (2) POP3 UIDL list.

受影響套件(1)

• Debian/fetchmailfrom 0, < 6.3.16-2

參考連結(1)

• ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2010-1167