CVE-2002-1365: CVE-2002-1365

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2002-1365

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Heap-based buffer overflow in Fetchmail 6.1.3 and earlier does not account for the "@" character when determining buffer lengths for local addresses, which allows remote attackers to execute arbitrary code via a header with a large number of local addresses.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Eric S. Raymond Fetchmail恶意邮件头造成堆破坏漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Fetchmail是一款由Eric S. Raymond维护的免费开放源代码邮件过滤系统。 Fetchmail在执行reply-hack操作时没有为搜索到的地址分配足够的空间，远程攻击者可以利用这个漏洞提交包含恶意头信息的邮件给目标用户，造成基于堆的破坏。当Fetchmail接收到EMAIL时会执行reply-hack操作，这个操作将对邮件头中包含的地址进行搜索，搜索是否有本地地址(不包含@domain)。当此地址找到时，Fetchmail会追加@和邮件服务器主机名。在分配这些地址的空间时，只对主机名数

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2002-1365

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2002-1365

Please Login to view more intelligence information

http://security.e-matters.de/advisories/052002.htmlx_refsource_MISC
http://www.securityfocus.com/bid/6390vdb-entryx_refsource_BID
http://www.debian.org/security/2002/dsa-216vendor-advisoryx_refsource_DEBIAN
http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000554vendor-advisoryx_refsource_CONECTIVA
http://www.redhat.com/support/errata/RHSA-2002-293.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2003-155.htmlvendor-advisoryx_refsource_REDHAT
http://www.redhat.com/support/errata/RHSA-2002-294.htmlvendor-advisoryx_refsource_REDHAT
http://www.mandrakesoft.com/security/advisories?name=MDKSA-2003:011vendor-advisoryx_refsource_MANDRAKE
ftp://ftp.caldera.com/pub/security/OpenLinux/CSSA-2003-001.0.txtvendor-advisoryx_refsource_CALDERA
http://marc.info/?l=bugtraq&m=104004858802000&w=2mailing-listx_refsource_BUGTRAQ
https://exchange.xforce.ibmcloud.com/vulnerabilities/10839vdb-entryx_refsource_XF
http://marc.info/?l=bugtraq&m=103979751818638&w=2mailing-listx_refsource_BUGTRAQ
https://nvd.nist.gov/vuln/detail/CVE-2002-1365

New Vulnerabilities

Product: n/a

Vendor: n/a

V. Comments for CVE-2002-1365

No comments yet

Support Us — Your donation helps us keep running

I. Basic Information for CVE-2002-1365

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2002-1365

III. Intelligence Information for CVE-2002-1365

New Vulnerabilities

V. Comments for CVE-2002-1365

Leave a comment