CVE-1999-1532

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Published Oct 29, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-1532 is a vulnerability affecting Netscape Messaging Server versions 3.54, 3.55, and 3.6. An attacker can trigger a denial-of-service condition by sending a series of long RCPT TO commands. This results in memory exhaustion on the server, making it unresponsive to legitimate traffic. This issue can potentially disrupt email services and cause significant inconvenience or downtime for affected organizations. To mitigate this risk, it is recommended that affected servers be upgraded to a patched version or configured to limit the size of RCPT TO commands.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlMP7
https://www.cve.org/CVERecord?id=CVE-1999-1532
https://nvd.nist.gov/vuln/detail/CVE-1999-1532

Back to Vulnerability Database

CVE-1999-1532

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations