Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
- EPSS 94.12%
- Published 29.01.2020 16:15:12
- Last modified 03.04.2025 19:43:07
smtp_mailaddr in smtp_session.c in OpenSMTPD 6.6, as used in OpenBSD 6.6 and other products, allows remote attackers to execute arbitrary commands as root via a crafted SMTP session, as demonstrated by shell metacharacters in a MAIL FROM field. This ...
9.8
CVE-2015-7687
- EPSS 10.14%
- Published 16.10.2017 18:29:00
- Last modified 20.04.2025 01:37:25
Use-after-free vulnerability in OpenSMTPD before 5.7.2 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via vectors involving req_ca_vrfy_smtp and req_ca_vrfy_mta.
- EPSS 1.43%
- Published 27.05.2014 14:55:09
- Last modified 12.04.2025 10:46:40
OpenSMTPD before 5.3.2 does not properly handle SSL sessions, which allows remote attackers to cause a denial of service (connection blocking) by keeping a connection open.
1