Format string vulnerability in MemeCode Software i.Scribe 1.88 through 2.00 before Beta9 allows remote SMTP servers to cause a denial of service (crash) and possibly execute arbitrary code via format string specifiers in a server response, which is not properly handled “when displaying the signon message.”
CPE | Name | Operator | Version |
---|---|---|---|
i.scribe | eq | 1.88 | |
i.scribe | eq | 2.0 beta11 | |
i.scribe | eq | 2.0 beta6 | |
i.scribe | eq | 2.0 alpha1 | |
i.scribe | eq | 2.0 alpha4 | |
i.scribe | eq | 1.90 | |
i.scribe | eq | 2.0 beta9 | |
i.scribe | eq | 2.0 beta8 | |
i.scribe | eq | 2.0 alpha3 | |
i.scribe | eq | 1.89 |