Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
POP3Lite before 0.2.4 does not properly quote a . (dot) in an email message, which could allow a remote attacker to append arbitrary text to the end of an email message, which could then be interpreted by various mail clients as valid POP server responses or other input that could cause clients to crash or otherwise behave unexpectedly.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
POP3Lite 输入验证漏洞
Vulnerability Description
CVE(CAN) ID: CAN-2001-0996 POP3Lite是Linux和BSD平台下的免费,开放源代码的POP3守护程序。 发现POP3Lite没有过滤信件中以"."开始的行,这至少可能导致意外情况的发生,如 果我们精心构造这封信件的内容,就可能导致把任意伪造的系统相应信息发送给从该服 务器上下载邮件的用户。 远程攻击者利用这个漏洞,可能插入任意信息或导致信息丢失,也可能导致匿名Email 攻击或者是拒绝服务攻击,这取决于客户端如何解释这些而已的输入。
CVSS Information
N/A
Vulnerability Type
N/A