Description
Qpopper 2.53 and 3.0 does not properly identify the \n string which identifies the end of message text, which allows a remote attacker to cause a denial of service or corrupt mailboxes via a message line that is 1023 characters long and ends in \n.
Affected products
- qualcomm / qpopper2.53 – 2.53
- qualcomm / qpopper3.0 – 3.0
- sun / cobalt_raq_2
- sun / cobalt_raq_3i