VYPR

Citadel Server

by Citadel

CVEs (2)

  • CVE-2008-0394Jan 23, 2008
    risk 0.04cvss epss 0.12

    Buffer overflow in Citadel SMTP server 7.10 and earlier allows remote attackers to execute arbitrary code via a long RCPT TO command, which is not properly handled by the makeuserkey function. NOTE: some of these details were obtained from third party information.

  • CVE-2008-3930Sep 4, 2008
    risk 0.00cvss epss 0.00

    migrate_aliases.sh in Citadel Server 7.37 allows local users to overwrite arbitrary files via a symlink attack on a temporary file.