Inter7 » Vpopmail Vchkpw : Security Vulnerabilities, CVEs,
vchkpw program in vpopmail before version 4.8 does not properly cleanse an untrusted format string used in a call to syslog, which allows remote attackers to cause a denial of service via a USER or PASS command that contains arbitrary formatting directives.
Max CVSS
5.0
EPSS Score
1.18%
Published
2000-06-30
Updated
2008-09-10
1 vulnerabilities found