Intrusion Prevention

SMTP.Error.Reporting.Format.String

Description

A format string vulnerability in send_message.c for Sylpheed-claws 0.9.4 through 0.9.6, allows remote SMTP servers to cause a denial of service (crash) in sylpheed via format strings in an error message.

Affected Products

Sylpheed-claws 0.9.4 through 0.9.6

Impact

Denial of Services.

Recommended Actions

Upgrade to Sylpheed-claws 0.9.7

CVE References

CVE-2003-0852