VYPR
Unrated severityNVD Advisory· Published Oct 15, 2007· Updated Jun 16, 2026

CVE-2007-5467

CVE-2007-5467

Description

Integer overflow in eXtremail 2.1.1 and earlier allows remote attackers to cause a denial of service, and possibly execute arbitrary code, via a long USER command containing "%s" sequences to the pop3 port (110/tcp), which are expanded to "%%s" before being used in the memmove function, possibly due to an incomplete fix for CVE-2001-1078.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:extremail:extremail:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:extremail:extremail:*:*:*:*:*:*:*:*range: <=2.1.1
    • (no CPE)range: <=2.1.1

Patches

Vulnerability mechanics

References

5

News mentions

0

No linked articles in our index yet.