Unrated severityNVD Advisory· Published Dec 31, 2002· Updated Apr 16, 2026

CVE-2002-2198

Description

Buffer overflow in ZMailer before 2.99.51_1 allows remote attackers to execute arbitrary code during HELO processing from an IPv6 address, possibly using an address that resolves to a long hostname.

Affected products

Zmailer/Zmailer7 versions
cpe:2.3:a:zmailer:zmailer:2.99.45:*:*:*:*:*:*:*+ 6 more
- cpe:2.3:a:zmailer:zmailer:2.99.45:*:*:*:*:*:*:*
- cpe:2.3:a:zmailer:zmailer:2.99.46:*:*:*:*:*:*:*
- cpe:2.3:a:zmailer:zmailer:2.99.47:*:*:*:*:*:*:*
- cpe:2.3:a:zmailer:zmailer:2.99.48:*:*:*:*:*:*:*
- cpe:2.3:a:zmailer:zmailer:2.99.49:*:*:*:*:*:*:*
- cpe:2.3:a:zmailer:zmailer:2.99.50:*:*:*:*:*:*:*
- cpe:2.3:a:zmailer:zmailer:2.99.51:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.iss.net/security_center/static/10013.phpnvdPatch
www.securityfocus.com/bid/5592nvdPatch
ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SN-02:05.ascnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.008
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000