CVE-2002-2338

Mozilla and Netscape Communicator - Denial of Service via POP3 Mail Message Newline Handling

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-2338. PoCs published by eldre8.

AI-analyzed exploit summary This exploit demonstrates a DoS vulnerability in Netscape Communicator and Mozilla browsers by sending a malformed email via SMTP. The crafted email contains specific byte sequences that disrupt POP3 mailbox access.

Description

The POP3 mail client in Mozilla 1.0 and earlier, and Netscape Communicator 4.7 and earlier, allows remote attackers to cause a denial of service (no new mail) via a mail message containing a dot (.) at a newline, which is interpreted as the end of the message.

Exploits (1)

exploitdb WORKING POC VERIFIED

by eldre8 · cdosmultiple

https://www.exploit-db.com/exploits/21539

View Code ZIP pw:eip

This exploit demonstrates a DoS vulnerability in Netscape Communicator and Mozilla browsers by sending a malformed email via SMTP. The crafted email contains specific byte sequences that disrupt POP3 mailbox access.

Classification

Working Poc 90%

Attack Type

Dos

Complexity

Trivial

Reliability

Reliable

Target: Netscape Communicator, Mozilla (pre-2002 versions)

No auth needed

Prerequisites: Access to an SMTP server · Ability to send emails to the target's mailbox

MITRE ATT&CK