Dovecot无效消息地址解析拒绝服务漏洞

QQ空间 新浪微博 微信 QQ facebook twitter
漏洞ID 1116535 漏洞类型 输入验证
发布时间 2008-10-30 更新时间 2008-12-16
CVE编号 CVE-2008-4907 CNNVD-ID CNNVD-200811-048
漏洞平台 Linux CVSS评分 4.3
|漏洞来源
https://www.exploit-db.com/exploits/32551
https://www.securityfocus.com/bid/31997
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200811-048
|漏洞详情
Dovecot是一款开源的基于类Linux/UNIX系统的IMAP和POP3邮件服务器。Dovecot邮件系统没有正确地解析某些邮件头。如果远程攻击者发送了带有无效消息地址的恶意邮件的话,则IMAP客户端使用FETCHENVELOPE命令从服务器收取邮件会导致之后的收件人无法接收邮件,因为进程会一直试图解析无效的邮件头直到崩溃。
|漏洞EXP
source: http://www.securityfocus.com/bid/31997/info

Dovecot is prone to a remote denial-of-service vulnerability because it fails to handle certain specially crafted email headers.

An attacker can exploit this issue to prevent recipients from accessing their mailboxes.

For an exploit to succeed, the IMAP client connecting to Dovecot must use the FETCH ENVELOPE command.

The issue affects Dovecot 1.1.4 and 1.1.5. 

The following invalid message address header is sufficient to trigger this issue:

"From: ("
|受影响的产品
Ubuntu Ubuntu Linux 8.10 sparc Ubuntu Ubuntu Linux 8.10 powerpc Ubuntu Ubuntu Linux 8.10 lpia Ubuntu Ubuntu Linux 8.10 i386 Ubuntu Ubuntu Linux 8.10 amd64 Pardus Linux 20
|参考资料

来源:BID
名称:31997
链接:http://www.securityfocus.com/bid/31997
来源:SECUNIA
名称:32479;PatchInformation
链接:http://secunia.com/advisories/32479
来源:XF
名称:dovecot-mail-header-dos(46227)
链接:http://xforce.iss.net/xforce/xfdb/46227
来源:UBUNTU
名称:USN-666-1
链接:http://www.ubuntu.com/usn/usn-666-1
来源:MLIST
名称:[Dovecot-news]20081030v1.1.6released
链接:http://www.dovecot.org/list/dovecot-news/2008-October/000089.html
来源:GENTOO
名称:GLSA-200812-16
链接:http://security.gentoo.org/glsa/glsa-200812-16.xml
来源:SECUNIA
名称:33149
链接:http://secunia.com/advisories/33149
来源:SECUNIA
名称:32677
链接:http://secunia.com/advisories/32677