FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

mail-notification -- denial-of-service vulnerability

Affected packages
mail-notification < 0.7.0

Details

VuXML ID 3030ae22-1c7f-11d9-81a4-0050fc56d258
Discovery 2004-10-06
Entry 2004-10-12

Caused by an untested return value, and a resulting null pointer dereference, it is possible for an attacker to crash the application. However, the attacker must first hijack the connection between Mail Notification and the Gmail or IMAP server.

References

URL http://www.nongnu.org/mailnotify/sa/mail-notification-SA-04:2.asc
URL http://www.nongnu.org/mailnotify/sa/mail-notification-SA-04:3.asc