Spamdyke
by Spamdyke
CVEs (3)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2012-0070 | Hig | 0.49 | 7.5 | 0.01 | Jan 15, 2020 | spamdyke prior to 4.2.1: STARTTLS reveals plaintext | ||
| CVE-2012-0802 | 0.00 | — | 0.05 | Jun 19, 2012 | Multiple buffer overflows in Spamdyke before 4.3.0 might allow remote attackers to execute arbitrary code via vectors related to "serious errors in the usage of snprintf()/vsnprintf()" in which the return values may be larger than the size of the buffer. | |||
| CVE-2008-2784 | 0.00 | — | 0.01 | Jun 19, 2008 | The smtp_filter function in spamdyke before 3.1.8 does not filter RCPT commands after encountering the first DATA command, which allows remote attackers to use the server as an open mail relay by sending RCPT commands with invalid recipients, followed by a DATA command, followed… |
- risk 0.49cvss 7.5epss 0.01
spamdyke prior to 4.2.1: STARTTLS reveals plaintext
- CVE-2012-0802Jun 19, 2012risk 0.00cvss —epss 0.05
Multiple buffer overflows in Spamdyke before 4.3.0 might allow remote attackers to execute arbitrary code via vectors related to "serious errors in the usage of snprintf()/vsnprintf()" in which the return values may be larger than the size of the buffer.
- CVE-2008-2784Jun 19, 2008risk 0.00cvss —epss 0.01
The smtp_filter function in spamdyke before 3.1.8 does not filter RCPT commands after encountering the first DATA command, which allows remote attackers to use the server as an open mail relay by sending RCPT commands with invalid recipients, followed by a DATA command, followed…