Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2008-5429
HistoryDec 11, 2008 - 3:30 p.m.

CVE-2008-5429

2008-12-1115:30:00
CWE-399
[email protected]
web.nvd.nist.gov
21
incredimail
denial of service
cve-2008-5429
nvd
multipart/mixed
mime
email
stack consumption
resource consumption

6.5 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.007 Low

EPSS

Percentile

80.1%

JSON

Incredimail build 5853710 does not properly handle (1) multipart/mixed e-mail messages with many MIME parts and possibly (2) e-mail messages with many “Content-type: message/rfc822;” headers, which allows remote attackers to cause a denial of service (stack consumption or other resource consumption) via a large e-mail message, a related issue to CVE-2006-1173.

Related

prion 9
cvelist 9
openvas 12
nessus 21
centos 2
debian 2
slackware 1
gentoo 1
cert 1
redhat 1
freebsd_advisory 1
cve 8
ubuntucve 2
suse 1
securityvulns 1
freebsd 1
debiancve 1
prion
prion
Design/Logic Flaw
2008-12-11 15:30:00
Stack overflow
2006-06-07 23:06:00
Design/Logic Flaw
2008-12-11 15:30:00
cvelist
cvelist
CVE-2008-5429
2008-12-11 15:00:00
CVE-2006-1173
2006-06-07 23:00:00
CVE-2008-5426
2008-12-11 15:00:00
openvas
openvas
Incredimail Malformed MIME Message DoS Vulnerability
2008-12-18 00:00:00
Incredimail Malformed MIME Message DoS Vulnerability
2008-12-18 00:00:00
Gentoo Security Advisory GLSA 200606-19 (sendmail)
2008-09-24 00:00:00
nessus
nessus
Solaris 10 (x86) : 122857-04
2006-04-21 00:00:00
AIX 5.2 TL 8 : bos.net.tcp.client (U806039)
2007-12-03 00:00:00
Slackware 10.0 / 10.1 / 10.2 / 8.1 / 9.0 / 9.1 / current : sendmail (SSA:2006-166-01)
2006-06-16 00:00:00
centos
centos
sendmail security update
2006-06-18 23:46:01
sendmail security update
2006-06-14 21:17:41
debian
debian
[SECURITY] [DSA 1155-2] New sendmail packages fix denial of service
2006-08-24 00:00:00
[SECURITY] [DSA 1155-1] New sendmail packages fix denial of service
2006-08-24 00:00:00
slackware
slackware
[slackware-security] sendmail
2006-06-15 08:39:54
gentoo
gentoo
Sendmail: Denial of service
2006-06-15 00:00:00
cert
cert
Sendmail fails to handle malformed multipart MIME messages
2006-06-14 00:00:00
redhat
redhat
(RHSA-2006:0515) sendmail security update
2006-06-14 00:00:00
freebsd_advisory
freebsd_advisory
FreeBSD-SA-06:17.sendmail
2006-06-14 00:00:00
cve
cve
CVE-2006-1173
2006-06-07 23:06:00
CVE-2008-5430
2008-12-13 08:40:00
CVE-2008-5425
2008-12-11 15:30:00
ubuntucve
ubuntucve
CVE-2006-1173
2006-06-07 00:00:00
CVE-2008-5430
2008-12-13 00:00:00
suse
suse
remote denial of service in sendmail
2006-06-14 19:08:15
securityvulns
securityvulns
DoS attacks on MIME-capable software via complex MIME emails
2008-12-09 00:00:00
freebsd
freebsd
sendmail -- Incorrect multipart message handling
2006-06-14 00:00:00
debiancve
debiancve
CVE-2006-1173
2006-06-07 23:06:00

6.5 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

0.007 Low

EPSS

Percentile

80.1%

JSON
Related for CVE-2008-5429
prion9cvelist9openvas12nessus21centos2debian2slackware1gentoo1cert1redhat1freebsd_advisory1cve8ubuntucve2suse1securityvulns1freebsd1debiancve1