CVE-2007-6573

QK SMTP Server 3 - Denial of Service via Long Command Strings

Title source: llm
STIX 2.1

Description

QK SMTP Server 3 allows remote attackers to cause a denial of service (daemon crash) via a long (1) HELO, (2) MAIL FROM, or (3) RCPT TO command; or (4) a long string in the message sent after the DATA command; possibly a related issue to CVE-2006-5551.

References (3)

Core 3
Core References
Third Party Advisory third-party-advisory x_refsource_sreason
http://securityreason.com/securityalert/3494
Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb
http://osvdb.org/43533
Third Party Advisory, VDB Entry mailing-list x_refsource_bugtraq
http://www.securityfocus.com/archive/1/485026/100/100/threaded

Scores

EPSS 0.0161
EPSS Percentile 73.2%

Details

CWE
CWE-20
Status published
Products (1)
qksoft/qk_smtp_server_3
Published Dec 28, 2007
Tracked Since Feb 18, 2026