Denial of Service in MDaemon 3.5.0 Due to Long URL Processing
CVE-2001-0064

Currently unrated

Key Information:

Vendor: Alt-n
Status: Mdaemon
Vendor: CVE Published:; 12 February 2001

What is CVE-2001-0064?

MDaemon versions 3.5.0 and earlier are susceptible to a denial of service vulnerability. By sending a specially crafted long URL that contains a sequence terminated by a carriage return followed by a newline (' '), remote attackers can exploit this flaw to disrupt the service's operation.

References

http://archives.neohapsis.com/archives/bugtraq/2000-12/03...

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/2134

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Feb 12, 2001
Vulnerability Reserved
Feb 1, 2001

Alt-n

What is CVE-2001-0064?

References

Timeline