Denial of Service Vulnerability in Qpopper Email Software by Qualcomm
CVE-2000-0320

Currently unrated

Key Information:

Vendor: Qualcomm
Status: Qpopper; Cobalt Raq 3i; Cobalt Raq 2
Vendor: CVE Published:; 21 April 2000

Summary

The Qpopper email server versions 2.53 and 3.0 contain a flaw that fails to properly identify the newline character, which designates the end of message text. This allows a remote attacker to exploit the vulnerability by sending a specially crafted message line of 1023 characters ending in a newline. Such an attack may lead to denial of service conditions or mailbox corruption, significantly impacting email service and data integrity.

References

http://www.securityfocus.com/templates/archive.pike?list=...

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/1133

vdb-entryx_refsource_BID

Timeline

Vulnerability Reserved
May 11, 2000
Vulnerability published
Apr 21, 2000