This page lists publicly disclosed CVE vulnerabilities affecting ultrafunk popcorn (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2009-1647 | Heap-based buffer overflow in popcorn.exe in Ultrafunk Popcorn 1.87 allows remote POP3 servers to cause a denial of service (application crash) via a long string in a +OK response. NOTE: some of these details are obtained from third party information. | [email protected] | 9.3 | 6.22% | 2009-05-15 | 2026-04-23 |
| CVE-2002-1045 | Ultrafunk Popcorn 1.20 allows remote attackers to cause a denial of service (crash) via a malformed Date field that is converted into a year greater than 2037. | [email protected] | 5.0 | 1.32% | 2002-10-04 | 2026-04-16 |
| CVE-2002-1044 | Buffer overflow in Ultrafunk Popcorn 1.20 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via a long Subject field. | [email protected] | 7.5 | 4.16% | 2002-10-04 | 2026-04-16 |
| CVE-2002-1043 | Ultrafunk Popcorn 1.20 allows remote attackers to cause a denial of service (crash) via a malformed Subject ("\t\t"). | [email protected] | 5.0 | 10.35% | 2002-10-04 | 2026-04-16 |