CVE-1999-0006

CVSS 2.0 Score 10.0 of 10 (high)

Details

Published Jul 14, 1998
Updated: Nov 20, 2024
CWE ID 125

Summary

CVE-1999-0006 is a significant buffer overflow vulnerability affecting POP servers based on BSD/Qualcomm's qpopper. This issue arises due to a flaw in the PASS command processing, which allows remote attackers to exploit the buffer and gain root access to the system. By sending a specially crafted long PASS command, an attacker can manipulate the server's memory and execute arbitrary code, ultimately leading to unauthorized system access and potential data theft or modification. This vulnerability poses a severe threat to email servers and requires immediate patching to prevent potential attacks.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share