CVE-2008-7074

2009-08-2510:00:00

mitre

www.cve.org

7.7 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.7%

JSON

Format string vulnerability in MemeCode Software i.Scribe 1.88 through 2.00 before Beta9 allows remote SMTP servers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in a server response, which is not properly handled “when displaying the signon message.”

References

memecode.com/site/ver.php?id=264

osvdb.org/50232

secunia.com/advisories/32906

www.securityfocus.com/bid/32497

exchange.xforce.ibmcloud.com/vulnerabilities/46970

www.exploit-db.com/exploits/7249