CVSS: 5.0EPSS: 24%CPEs: 2EXPL: 0CVE-2003-0564
https://notcve.org/view.php?id=CVE-2003-0564
Multiple vulnerabilities in multiple vendor implementations of the Secure/Multipurpose Internet Mail Extensions (S/MIME) protocol allow remote attackers to cause a denial of service and possibly execute arbitrary code via an S/MIME email message containing certain unexpected ASN.1 constructs, as demonstrated using the NISSC test suite. Múltiples vulnerabilidades en múltiples implementaciones de fabricantes del protocolo S/MIME (Secure/Multiporpouse Internet Mail Extensions) permiten a atacantes remotos causar una denegación de servicio y posiblemente ejecutar código arbitrario mediante un mensaje de correo electrónico S/MIME conteniendo ciertas instrucciones ASN.1 inesperadas, como se ha demostrado usando el paquete de pruebas NISSC. • ftp://patches.sgi.com/support/free/security/advisories/20040402-01-U.asc http://marc.info/?l=bugtraq&m=108448379429944&w=2 http://marc.info/?l=bugtraq&m=109900315219363&w=2 http://www.kb.cert.org/vuls/id/428230 http://www.mandriva.com/security/advisories?name=MDKSA-2004:021 http://www.redhat.com/support/errata/RHSA-2004-110.html http://www.redhat.com/support/errata/RHSA-2004-112.html http://www.securityfocus.com/bid/8981 http://www.uniras.gov.uk/vuls/2003& •