9.3

CVE-2007-1252

Buffer overflow in Symantec Mail Security for SMTP 5.0 before Patch 175 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via crafted headers in an e-mail message.  NOTE: some information was obtained from third party sources.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
SymantecMail Security Version5.0 Editionsmtp
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 6.84% 0.932
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.3 8.6 10
AV:N/AC:M/Au:N/C:C/I:C/A:C
Es wurden noch keine Informationen zu CWE veröffentlicht.
ftp://ftp.symantec.com/public/english_us_canada/products/symantec_mail_security/5.0_smtp/updates/release_notes_p175.txt
http://osvdb.org/33840
http://secunia.com/advisories/24371
Vendor Advisory
http://www.kb.cert.org/vuls/id/875633
Patch
Third Party Advisory
US Government Resource
http://www.securityfocus.com/bid/22782
Patch
Vendor Advisory
http://www.securitytracker.com/id?1017716
http://www.vupen.com/english/advisories/2007/0799
https://exchange.xforce.ibmcloud.com/vulnerabilities/32781