Vulnonym.org

CVE-2008-1648 - Shady Misleads

Description

Sympa before 5.4 allows remote attackers to cause a denial of service (daemon crash) via an e-mail message with a malformed value of the Content-Type header and unspecified other headers. NOTE: some of these details are obtained from third party information.

Reference

http://www.sympa.org/distribution/latest-stable/NEWS http://sourcesup.cru.fr/tracker/?func=detail&group_id=23&aid=3702&atid=167 http://secunia.com/advisories/29575 http://www.securityfocus.com/bid/28539 http://secunia.com/advisories/30910 http://www.debian.org/security/2008/dsa-1600 http://www.mandriva.com/security/advisories?name=MDVSA-2008:133 http://www.vupen.com/english/advisories/2008/1080/references https://exchange.xforce.ibmcloud.com/vulnerabilities/41561