CVE-2006-2659

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
30/05/2006
Last modified:
03/04/2025

Description

libs/comverp.c in Courier MTA before 0.53.2 allows attackers to cause a denial of service (CPU consumption) via unknown vectors involving usernames that contain the "=" (equals) character, which is not properly handled during encoding.

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:double_precision_incorporated:courier_mta:*:*:*:*:*:*:*:* 0.44.2 (including)
cpe:2.3:a:double_precision_incorporated:courier_mta:0.37.3:*:*:*:*:*:*:*
cpe:2.3:a:double_precision_incorporated:courier_mta:0.38.1:*:*:*:*:*:*:*
cpe:2.3:a:double_precision_incorporated:courier_mta:0.40:*:*:*:*:*:*:*
cpe:2.3:a:double_precision_incorporated:courier_mta:0.43:*:*:*:*:*:*:*
cpe:2.3:a:double_precision_incorporated:courier_mta:0.43.1:*:*:*:*:*:*:*
cpe:2.3:a:double_precision_incorporated:courier_mta:0.43.2:*:*:*:*:*:*:*
cpe:2.3:a:double_precision_incorporated:courier_mta:0.44:*:*:*:*:*:*:*