qmail漏洞

漏洞信息详情

qmail漏洞

• CNNVD编号：CNNVD-200505-974
• 危害等级： 中危
  
  
• CVE编号：
  CVE-2005-1515
  
• 漏洞类型：
  
  
  其他
  
• 发布时间：
  
  2005-05-11
  
• 威胁类型：
  
  
  远程
  
• 更新时间：
  
  2020-10-09
  
• 厂        商：
  
  dan_bernstein
• 漏洞来源：
  Ubuntu

qmail中的qmail_put和substdio_put函数存在整数符号错误，在有大量虚拟内存的64位平台上运行时，远程攻击者可以通过大量SMTP RCPT TO命令来发起拒绝服务攻击并可能执行任意代码。

来源:http://nvd.nist.gov/nvd.cfm?cvename=CVE-2005-1515

链接:无

来源:MLIST

链接:http://www.openwall.com/lists/oss-security/2020/05/19/8

来源:UBUNTU

链接:https://usn.ubuntu.com/4556-1/

来源:MLIST

链接:http://www.openwall.com/lists/oss-security/2020/05/20/2

来源:FULLDISC

链接:http://seclists.org/fulldisclosure/2020/May/42

来源:MISC

链接:http://www.guninski.com/where_do_you_want_billg_to_go_today_4.html

来源:DEBIAN

链接:https://www.debian.org/security/2020/dsa-4692

来源:GENTOO

链接:https://security.gentoo.org/glsa/202007-01

来源:MLIST

链接:https://lists.debian.org/debian-lts-announce/2020/06/msg00002.html

来源:FULLDISC

链接:http://archives.neohapsis.com/archives/fulldisclosure/2005-05/0101.html

来源:MISC

链接:https://packetstormsecurity.com/files/157805/Qualys-Security-Advisory-Qmail-Remote-Code-Execution.html

来源:SECTRACK

链接:http://securitytracker.com/id?1013911

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/157805/Qualys-Security-Advisory-Qmail-Remote-Code-Execution.html

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/159329/Ubuntu-Security-Notice-USN-4556-1.html

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.1967/

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/158551/Gentoo-Linux-Security-Advisory-202007-01.html

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.1841/

来源:www.auscert.org.au

链接:https://www.auscert.org.au/bulletins/ESB-2020.3353/