>> Fetchmail Warning Message Forwarding Remote Denial of Service Vulnerability
Title : Fetchmail Warning Message Forwarding Remote Denial of Service Vulnerability VUPEN ID : VUPEN/ADV-2007-3032 CVE ID : CVE-2007-4565
Rated as : Low Risk
Remotely Exploitable : Yes Locally Exploitable : Yes Release Date : 2007-09-03
Technical Description
A vulnerability has been identified in Fetchmail, which could be exploited by attackers to cause a denial of service. This issue is caused by a NULL pointer dereference in the "send_bouncemail()" [sink.c] function when warning messages are refused by the SMTP listener, which could be exploited by attackers to cause a denial of service by tricking a user into connecting to a malicious SMTP server.
