Denial of Service Vulnerability in SmarterMail by SmarterTools
CVE-2004-2587

Currently unrated

Key Information:

Vendor: Smartertools
Status: Smartermail
Vendor: CVE Published:; 31 December 2004

What is CVE-2004-2587?

A vulnerability in login.aspx of SmarterMail versions 1.6.1511 and 1.6.1529 enables remote attackers to exploit a flaw by injecting a long txtusername parameter, which may lead to a denial of service condition. This issue stems from an inadequate handling of input, potentially resulting in a buffer overflow that disrupts service availability.

References

http://www.zone-h.org/advisories/read/id=4098

x_refsource_MISC

http://members.lycos.co.uk/r34ct/main/smarter_mail%203.1/...

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/15390

vdb-entryx_refsource_XF

Timeline

Vulnerability Reserved
Nov 28, 2005
Vulnerability published
Dec 31, 2004

Smartertools

What is CVE-2004-2587?

References

Timeline