9.8

CVE-2019-11395

Exploit
A buffer overflow in MailCarrier 2.51 allows remote attackers to execute arbitrary code via a long string, as demonstrated by SMTP RCPT TO, POP3 USER, POP3 LIST, POP3 TOP, or POP3 RETR.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
TabslabMailcarrier Version2.51
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 14.57% 0.962
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 9.8 3.9 5.9
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov 7.5 10 6.4
AV:N/AC:L/Au:N/C:P/I:P/A:P
CWE-787 Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

http://packetstormsecurity.com/files/152502/MailCarrier-2.51-RCPT-TO-Buffer-Overflow.html
Third Party Advisory
Exploit
VDB Entry
http://packetstormsecurity.com/files/152504/MailCarrier-2.51-USER-Buffer-Overflow.html
Third Party Advisory
Exploit
VDB Entry
http://packetstormsecurity.com/files/152505/MailCarrier-2.51-LIST-Buffer-Overflow.html
Third Party Advisory
Exploit
VDB Entry
http://packetstormsecurity.com/files/152506/MailCarrier-2.51-TOP-Buffer-Overflow.html
Third Party Advisory
Exploit
VDB Entry
http://packetstormsecurity.com/files/152530/MailCarrier-2.51-RETR-Buffer-Overflow.html
Third Party Advisory
Exploit
VDB Entry
https://packetstormsecurity.com/files/152502/MailCarrier-2.51-RCPT-TO-Buffer-Overflow.html
Third Party Advisory
Exploit
VDB Entry
https://packetstormsecurity.com/files/152504/MailCarrier-2.51-USER-Buffer-Overflow.html
Third Party Advisory
Exploit
VDB Entry
https://packetstormsecurity.com/files/152505/MailCarrier-2.51-LIST-Buffer-Overflow.html
Third Party Advisory
Exploit
VDB Entry
https://packetstormsecurity.com/files/152506/MailCarrier-2.51-TOP-Buffer-Overflow.html
Third Party Advisory
Exploit
VDB Entry
https://packetstormsecurity.com/files/152530/MailCarrier-2.51-RETR-Buffer-Overflow.html
Third Party Advisory
Exploit
VDB Entry