5
CVE-2003-0540
- EPSS 57.49%
- Published 27.08.2003 04:00:00
- Last modified 03.04.2025 01:03:51
- Source cve@mitre.org
- Teams watchlist Login
- Open Login
The address parser code in Postfix 1.1.12 and earlier allows remote attackers to cause a denial of service (lock) via (1) a malformed envelope address to a local host that would generate a bounce and contains the ".!" string in the MAIL FROM or Errors-To headers, which causes nqmgr to lock up, or (2) via a valid MAIL FROM with a RCPT TO containing a ".!" string, which causes an instance of the SMTP listener to lock up.
Data is provided by the National Vulnerability Database (NVD)
Wietse Venema ≫ Postfix Version1.0.21
Wietse Venema ≫ Postfix Version1.1.11
Wietse Venema ≫ Postfix Version1.1.12
Wietse Venema ≫ Postfix Version1999-09-06
Wietse Venema ≫ Postfix Version1999-12-31
Wietse Venema ≫ Postfix Version2000-02-28
Wietse Venema ≫ Postfix Version2001-11-15
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 57.49% | 0.98 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|