Vulnerabilities > CVE-2005-1807 - Remote Denial of Service vulnerability in PHPMailer Data() Function
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
PARTIAL Summary
The Data function in class.smtp.php in PHPMailer 1.7.2 and earlier allows remote attackers to cause a denial of service (infinite loop leading to memory and CPU consumption) via a long header field.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | PHPMailer 1.7 Data() Function Remote Denial of Service Vulnerability. CVE-2005-1807. Dos exploit for php platform |
id | EDB-ID:25752 |
last seen | 2016-02-03 |
modified | 2005-05-28 |
published | 2005-05-28 |
reporter | Mariano Nunez Di Croce |
source | https://www.exploit-db.com/download/25752/ |
title | PHPMailer 1.7 Data Function Remote Denial of Service Vulnerability |
References
- http://seclists.org/lists/bugtraq/2005/May/0337.html
- http://secunia.com/advisories/15543
- http://secunia.com/advisories/18732
- http://secunia.com/advisories/25726
- http://securitytracker.com/id?1014069
- http://sourceforge.net/project/shownotes.php?release_id=341210&group_id=26031
- http://www.cybsec.com/vuln/PHPMailer-DOS.pdf
- http://www.securityfocus.com/bid/13805
- http://www.vupen.com/english/advisories/2006/0448
- http://www.vupen.com/english/advisories/2007/2242