Lucene search
HistoryJul 15, 2014 - 2:55 p.m.
CVE-2014-1474
cve-2014-1474
email::address::list
denial of service
vulnerability
nvd
security
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.5 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
79.8%
Algorithmic complexity vulnerability in Email::Address::List before 0.02, as used in RT 4.2.0 through 4.2.2, allows remote attackers to cause a denial of service (CPU consumption) via a string without an address.
Affected configurations
Node
bestpracticalrtMatch4.2.0
ORbestpracticalrtMatch4.2.1
ORbestpracticalrtMatch4.2.2
ORemail\\Matchaddress\\list_projectemail\\address\\
Related
nessus
nessus
nvd
nvd
CVE-2014-1474
2014-07-15 14:55:08
prion
prion
Design/Logic Flaw
2014-07-15 14:55:00
openvas
openvas
cvelist
cvelist
CVE-2014-1474
2014-07-15 14:00:00
ubuntucve
ubuntucve
CVE-2014-1474
2014-07-15 00:00:00
freebsd
freebsd
rt42 -- denial-of-service attack via the email gateway
2014-01-27 00:00:00
debiancve
debiancve
CVE-2014-1474
2014-07-15 14:55:08
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
6.5 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
79.8%
Related for CVE-2014-1474