CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2001-0996

POP3Lite before 0.2.4 does not properly quote a . (dot) in an email message, which could allow a remote attacker to append arbitrary text to the end of an email message, which could then be interpreted by various mail clients as valid POP server responses or other input that could cause clients to crash or otherwise behave unexpectedly.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.009

EPSS Ranking 74.2%

CVSS Severity

CVSS v2 Score 6.4

References

http://archives.neohapsis.com/archives/bugtraq/2001-08/0436.html
http://www.securityfocus.com/bid/3278
https://exchange.xforce.ibmcloud.com/vulnerabilities/7075
http://archives.neohapsis.com/archives/bugtraq/2001-08/0436.html
http://www.securityfocus.com/bid/3278
https://exchange.xforce.ibmcloud.com/vulnerabilities/7075

Products affected by CVE-2001-0996

Pop3lite » Pop3lite » Version: 0.2.3

cpe:2.3:a:pop3lite:pop3lite:0.2.3
Pop3lite » Pop3lite » Version: 0.2.3b

cpe:2.3:a:pop3lite:pop3lite:0.2.3b

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2001-0996

Products

Pricing

Contact Us