Vulnerability Details CVE-2002-2198
Buffer overflow in ZMailer before 2.99.51_1 allows remote attackers to execute arbitrary code during HELO processing from an IPv6 address, possibly using an address that resolves to a long hostname.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.061
EPSS Ranking 90.4%
CVSS Severity
CVSS v2 Score 10.0
References
- ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02:05.asc
- http://www.iss.net/security_center/static/10013.php
- http://www.securityfocus.com/bid/5592
- ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02:05.asc
- http://www.iss.net/security_center/static/10013.php
- http://www.securityfocus.com/bid/5592
Products affected by CVE-2002-2198
-
cpe:2.3:a:zmailer:zmailer:2.99.45
-
cpe:2.3:a:zmailer:zmailer:2.99.46
-
cpe:2.3:a:zmailer:zmailer:2.99.47
-
cpe:2.3:a:zmailer:zmailer:2.99.48
-
cpe:2.3:a:zmailer:zmailer:2.99.49
-
cpe:2.3:a:zmailer:zmailer:2.99.50
-
cpe:2.3:a:zmailer:zmailer:2.99.51