EXPLOITS

PHPMailer 1.7 - 'Data()' Remote Denial of Service

Author: Mariano Nunez Di Croce
type: dos
platform: php
port: 
date_added: 2005-05-28  
date_updated: 2017-06-22  
verified: 1  
codes: CVE-2005-1807;OSVDB-16935  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 25752.txt  

source: https://www.securityfocus.com/bid/13805/info

PHPMailer is affected by a remote denial-of-service vulnerability.

An attacker can send an email message with a malformed header field to initiate an infinite loop in the application. This eventually leads to a crash due to resource exhaustion.

PHPMailer 1.72 and prior versions are affected by this issue.

From: AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA... x 998