Vulnerabilities > CVE-2006-0876 - Denial Of Service vulnerability in POPFile

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

popfile

nessus

NVD

Published: 2006-02-24

Updated: 2011-03-08

Summary

POPFile before 0.22.4 allows remote attackers to cause a denial of service (application crash) via unspecified vectors involving character sets within e-mail messages.

Vulnerable Configurations

Part	Description	Count
Application	Popfile Popfile Popfile 0.18.3 Popfile Popfile 0.19.1 Popfile Popfile 0.20.1 Popfile Popfile 0.21.2	4

Nessus

NASL family	Debian Local Security Checks
NASL id	DEBIAN_DSA-1061.NASL
description	It has been discovered that popfile, a bayesian mail classifier, can be forced into a crash through malformed character sets within email messages, which allows denial of service.
last seen	2020-06-01
modified	2020-06-02
plugin id	22603
published	2006-10-14
reporter	This script is Copyright (C) 2006-2019 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/22603
title	Debian DSA-1061-1 : popfile - missing input sanitising

Summary

Vulnerable Configurations

Nessus

References