CVE-2010-0562

NONECVSS 0.0

0.0

The sdump function in sdump.c in fetchmail 6.3.11, 6.3.12, and 6.3.13, when running in verbose mode on platforms for which char is signed, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an SSL X.509 certificate containing non-printable characters with the high bit set, which triggers a heap-based buffer overflow during escaping.

🔗 References (16)

cve@mitrehttp://mknod.org/svn/fetchmail/branches/BRANCH_6-3/fetchmail-SA-2010-01.txt
cve@mitrehttp://osvdb.org/62114
cve@mitrehttp://secunia.com/advisories/38391
cve@mitrehttp://www.fetchmail.info/fetchmail-SA-2010-01.txt
cve@mitrehttp://www.mandriva.com/security/advisories?name=MDVSA-2010:037
cve@mitrehttp://www.securityfocus.com/bid/38088
cve@mitrehttp://www.securitytracker.com/id?1023543
cve@mitrehttp://www.vupen.com/english/advisories/2010/0296
af854a3a-2127-422b-91ae-364da2661108http://mknod.org/svn/fetchmail/branches/BRANCH_6-3/fetchmail-SA-2010-01.txt
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/62114
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/38391
af854a3a-2127-422b-91ae-364da2661108http://www.fetchmail.info/fetchmail-SA-2010-01.txt
af854a3a-2127-422b-91ae-364da2661108http://www.mandriva.com/security/advisories?name=MDVSA-2010:037
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/38088
af854a3a-2127-422b-91ae-364da2661108http://www.securitytracker.com/id?1023543

Is Your Infrastructure Affected by CVE-2010-0562?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2010-0562

📅 Published

🔄 Last Modified

🔗 References (16)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2010-0562?