VYPR
Unrated severityNVD Advisory· Published Feb 8, 2010· Updated Jun 16, 2026

CVE-2010-0562

CVE-2010-0562

Description

The sdump function in sdump.c in fetchmail 6.3.11, 6.3.12, and 6.3.13, when running in verbose mode on platforms for which char is signed, allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via an SSL X.509 certificate containing non-printable characters with the high bit set, which triggers a heap-based buffer overflow during escaping.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

4
  • cpe:2.3:a:fetchmail:fetchmail:6.3.11:*:*:*:*:*:*:*+ 3 more
    • cpe:2.3:a:fetchmail:fetchmail:6.3.11:*:*:*:*:*:*:*
    • cpe:2.3:a:fetchmail:fetchmail:6.3.12:*:*:*:*:*:*:*
    • cpe:2.3:a:fetchmail:fetchmail:6.3.13:*:*:*:*:*:*:*
    • (no CPE)range: 6.3.11, 6.3.12, 6.3.13

Patches

Vulnerability mechanics

References

8

News mentions

0

No linked articles in our index yet.