← CVECheck
HomeVulnerabilities

CVE-2002-1365 — HIGH severity vulnerability (Heap-based buffer overflow in Fetchmail 6.1.3 and earlier do)

Heap-based buffer overflow in Fetchmail 6.1.3 and earlier does not account for the "@" character when determining buffer lengths for local addresses, which allows remote attackers to execute arbitrary code via a header with a large number of local addresses.

CVE IDCVE-2002-1365
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWECWE-119
StatusModified
Published2002-12-23
Last modified2026-04-16
DescriptionHeap-based buffer overflow in Fetchmail 6.1.3 and earlier does not account for the "@" character when determining buffer lengths for local addresses, which allows remote attackers to execute arbitrary code via a header with a large number of local addresses.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →