Open zxcat opened 9 years ago
File: gen_smtp/src/gen_smtp_server_session.erl. Getting crash here in base64:decode:
gen_smtp/src/gen_smtp_server_session.erl
base64:decode
<<"PLAIN">> when Parameters =/= false -> % TODO - duplicated below in handle_request waitingauth PLAIN case binstr:split(base64:decode(Parameters), <<0>>) of
Example: command AUTH PLAIN z will crash server.
AUTH PLAIN z
Allowing illegal base64 strings will make the server a bit more robust against random input. (And less noisy in the logs)
File:
gen_smtp/src/gen_smtp_server_session.erl
. Getting crash here inbase64:decode
:Example: command
AUTH PLAIN z
will crash server.