Description
Unknown vulnerability in POP3 in gnubiff before 2.0.0 allows remote attackers to cause a denial of service (application crash) via an "infinite" Unique IDentification Listing (UIDL) list.
References (5)
Core 5
Core References
Patch vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/11123
Product x_refsource_confirm
http://gnubiff.sourceforge.net/changelog.php
Patch, Vendor Advisory third-party-advisory
x_refsource_secunia
http://secunia.com/advisories/12445
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/17282
Third Party Advisory, VDB Entry vdb-entry
x_refsource_osvdb
http://www.osvdb.org/9731
Scores
EPSS
0.0091
EPSS Percentile
76.1%
Details
Status
published
Products (10)
gnu/gnubiff
1.0.3
gnu/gnubiff
1.0.4
gnu/gnubiff
1.0.5
gnu/gnubiff
1.0.6
gnu/gnubiff
1.0.7
gnu/gnubiff
1.0.8
gnu/gnubiff
1.0.9
gnu/gnubiff
1.0.10
gnu/gnubiff
1.2.0
gnu/gnubiff
1.4.0
Published
Dec 31, 2004
Tracked Since
Feb 18, 2026