Vulnerability Description
QK SMTP Server 3 allows remote attackers to cause a denial of service (daemon crash) via a long (1) HELO, (2) MAIL FROM, or (3) RCPT TO command; or (4) a long string in the message sent after the DATA command; possibly a related issue to CVE-2006-5551.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Qksoft | Qk Smtp Server 3 | All versions |
Related Weaknesses (CWE)
References
- http://osvdb.org/43533
- http://securityreason.com/securityalert/3494
- http://www.securityfocus.com/archive/1/485026/100/100/threaded
- http://osvdb.org/43533
- http://securityreason.com/securityalert/3494
- http://www.securityfocus.com/archive/1/485026/100/100/threaded
FAQ
What is CVE-2007-6573?
CVE-2007-6573 is a vulnerability with a CVSS score of 7.8 (HIGH). QK SMTP Server 3 allows remote attackers to cause a denial of service (daemon crash) via a long (1) HELO, (2) MAIL FROM, or (3) RCPT TO command; or (4) a long string in the message sent after the DATA...
How severe is CVE-2007-6573?
CVE-2007-6573 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-6573?
Check the references section above for vendor advisories and patch information. Affected products include: Qksoft Qk Smtp Server 3.