Vulnerabilities > CVE-2005-1807 - Remote Denial of Service vulnerability in PHPMailer Data() Function

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
phpmailer
exploit available

Summary

The Data function in class.smtp.php in PHPMailer 1.7.2 and earlier allows remote attackers to cause a denial of service (infinite loop leading to memory and CPU consumption) via a long header field.

Vulnerable Configurations

Part Description Count
Application
Phpmailer
1

Exploit-Db

descriptionPHPMailer 1.7 Data() Function Remote Denial of Service Vulnerability. CVE-2005-1807. Dos exploit for php platform
idEDB-ID:25752
last seen2016-02-03
modified2005-05-28
published2005-05-28
reporterMariano Nunez Di Croce
sourcehttps://www.exploit-db.com/download/25752/
titlePHPMailer 1.7 Data Function Remote Denial of Service Vulnerability