Masqmail

CVEs (5)

CVE	CVSS	EPSS	Published	Description
CVE-2011-3350	—	0.00	Nov 19, 2019	masqmail 0.2.21 through 0.2.30 improperly calls seteuid() in src/log.c and src/masqmail.c that results in improper privilege dropping.
CVE-2005-2663	—	0.00	Sep 21, 2005	masqmail before 0.2.18 allows local users to overwrite arbitrary files via a symlink attack on a log file.
CVE-2005-2662	—	0.01	Sep 21, 2005	masqmail before 0.2.18 allows remote attackers to execute arbitrary commands via crafted e-mail addresses that are not properly sanitized when creating a failed delivery message.
CVE-2002-1279	—	0.00	Nov 29, 2002	Multiple buffer overflows in conf.c for Masqmail 0.1.x before 0.1.17, and 0.2.x before 0.2.15, allow local users to gain privileges via certain entries in the configuration file (-C option).
CVE-2001-1173	—	0.00	Jul 26, 2001	Vulnerability in MasqMail before 0.1.15 allows local users to gain privileges via piped aliases.

CVE-2011-3350Nov 19, 2019
risk 0.00cvss —epss 0.00
masqmail 0.2.21 through 0.2.30 improperly calls seteuid() in src/log.c and src/masqmail.c that results in improper privilege dropping.
CVE-2005-2663Sep 21, 2005
risk 0.00cvss —epss 0.00
masqmail before 0.2.18 allows local users to overwrite arbitrary files via a symlink attack on a log file.
CVE-2005-2662Sep 21, 2005
risk 0.00cvss —epss 0.01
masqmail before 0.2.18 allows remote attackers to execute arbitrary commands via crafted e-mail addresses that are not properly sanitized when creating a failed delivery message.
CVE-2002-1279Nov 29, 2002
risk 0.00cvss —epss 0.00
Multiple buffer overflows in conf.c for Masqmail 0.1.x before 0.1.17, and 0.2.x before 0.2.15, allow local users to gain privileges via certain entries in the configuration file (-C option).
CVE-2001-1173Jul 26, 2001
risk 0.00cvss —epss 0.00
Vulnerability in MasqMail before 0.1.15 allows local users to gain privileges via piped aliases.