Input validation error in postsrsd

#VU54561 Input validation error in postsrsd

Published: 2021-07-06

Vulnerability identifier: #VU54561

Vulnerability risk: Low

CVSSv3.1: 3.2 [CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-35525

CWE-ID: CWE-20

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
postsrsd
Server applications / Mail servers

Vendor: roehling (Timo Röhling)

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to insufficient validation of input when processing certain log data fields from Postfix, such as multiple concatenated email addresses. A remote attacker can force Postfix under certain circumstances pass specially crafted input to the application and perform a denial of service (DoS) attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

postsrsd: 1.0 - 1.10

External links
http://github.com/roehling/postsrsd/commit/077be98d8c8a9847e4ae0c7dc09e7474cbe27db2
http://bugs.gentoo.org/793674
http://github.com/roehling/postsrsd/releases/tag/1.11

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Gentoo update for PostSRSd

Denial of service in PostSRSd