CVE		CVE-2006-5974
Статус		Candidate
Описание		fetchmail 6.3.5 and 6.3.6 before 6.3.6-rc4, when refusing a message delivered via the mda option, allows remote attackers to cause a denial of service (crash) via unknown vectors that trigger a NULL pointer dereference when calling the (1) ferror or (2) fflush functions.
Важность		Low
CVSS score		3,3
CVSS vector		(AV:R/AC:L/Au:NR/C:N/I:N/A:C/B:N)
Phase		Assigned (20.11.2006)
NVD:		http://nvd.nist.gov/nvd.cfm?cvename=CVE-2006-5974
References		BID : 21902
		BUGTRAQ : 20070105 fetchmail security announcement 2006-03 (CVE-2006-5974)
		CONFIRM : http://fetchmail.berlios.de/fetchmail-SA-2006-03.txt
		FEDORA : FEDORA-2007-041
		FRSIRT : ADV-2007-0087
		FRSIRT : ADV-2007-0088
		GENTOO : GLSA-200701-13
		OPENPKG : OpenPKG-SA-2007.004
		SECTRACK : 1017479
		SECUNIA : 23631
		SECUNIA : 23804
		SECUNIA : 23838
		SECUNIA : 23923
		SECUNIA : 24151
		SLACKWARE : SSA:2007-024-01
		SUSE : SUSE-SR:2007:004
		TRUSTIX : 2007-0007