CVE-2002-2338

The POP3 mail client in Mozilla 1.0 and earlier, and Netscape Communicator 4.7 and earlier, allows remote attackers to cause a denial of service (no new mail) via a mail message containing a dot (.) at a newline, which is interpreted as the end of the message.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mozilla:mozilla:0.9.2:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:mozilla:0.9.2.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:mozilla:0.9.3:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:mozilla:0.9.4:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:mozilla:0.9.4.1:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:mozilla:0.9.5:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:mozilla:0.9.6:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:mozilla:0.9.7:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:mozilla:0.9.8:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:mozilla:0.9.9:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:mozilla:1.0:*:*:*:*:*:*:*
cpe:2.3:a:mozilla:mozilla:1.0:rc1:*:*:*:*:*:*
cpe:2.3:a:mozilla:mozilla:1.0:rc2:*:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.0:*:*:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.4:*:*:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.5:*:*:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.06:*:*:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.6:*:*:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.07:*:*:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.7:*:*:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.08:*:*:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.51:*:*:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.61:*:*:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.72:*:*:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.73:*:*:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.74:*:*:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.75:*:*:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.76:*:*:*:*:*:*:*
cpe:2.3:a:netscape:communicator:4.77:*:*:*:*:*:*:*
cpe:2.3:a:netscape:navigator:6.0:*:*:*:*:*:*:*
cpe:2.3:a:netscape:navigator:6.0:*:mac:*:*:*:*:*
cpe:2.3:a:netscape:navigator:6.01:*:*:*:*:*:*:*
cpe:2.3:a:netscape:navigator:6.1:*:*:*:*:*:*:*
cpe:2.3:a:netscape:navigator:6.2:*:*:*:*:*:*:*
cpe:2.3:a:netscape:navigator:6.2.1:*:*:*:*:*:*:*
cpe:2.3:a:netscape:navigator:6.2.2:*:*:*:*:*:*:*

History

20 Nov 2024, 23:43

Type Values Removed Values Added
References () http://bugzilla.mozilla.org/show_bug.cgi?id=144228 - () http://bugzilla.mozilla.org/show_bug.cgi?id=144228 -
References () http://mozilla.org/releases/mozilla1.0.1/security-fixes-1.0.1.html - () http://mozilla.org/releases/mozilla1.0.1/security-fixes-1.0.1.html -
References () http://online.securityfocus.com/archive/1/276628 - () http://online.securityfocus.com/archive/1/276628 -
References () http://www.iss.net/security_center/static/9343.php - () http://www.iss.net/security_center/static/9343.php -
References () http://www.mandrakesoft.com/security/advisories?name=MDKSA-2002:074 - () http://www.mandrakesoft.com/security/advisories?name=MDKSA-2002:074 -
References () http://www.securityfocus.com/archive/1/276946 - () http://www.securityfocus.com/archive/1/276946 -
References () http://www.securityfocus.com/bid/5002 - Exploit, Patch () http://www.securityfocus.com/bid/5002 - Exploit, Patch

Information

Published : 2002-12-31 05:00

Updated : 2024-11-20 23:43


NVD link : CVE-2002-2338

Mitre link : CVE-2002-2338

CVE.ORG link : CVE-2002-2338


JSON object : View

Products Affected

netscape

  • communicator
  • navigator

mozilla

  • mozilla
CWE
CWE-20

Improper Input Validation