VYPR

Mimedefang

by Roaring Penguin

CVEs (4)

  • CVE-2017-14102HigSep 1, 2017
    risk 0.51cvss 7.8epss 0.00

    MIMEDefang 2.80 and earlier creates a PID file after dropping privileges to a non-root account, which might allow local users to kill arbitrary processes by leveraging access to this non-root account for PID file modification before a root script executes a "kill `cat…

  • CVE-2002-1121Sep 24, 2002
    risk 0.01cvss epss 0.07

    SMTP content filter engines, including (1) GFI MailSecurity for Exchange/SMTP before 7.2, (2) InterScan VirusWall before 3.52 build 1494, (3) the default configuration of MIMEDefang before 2.21, and possibly other products, do not detect fragmented emails as defined in RFC2046…

  • CVE-2007-0884Feb 12, 2007
    risk 0.00cvss epss 0.03

    Buffer overflow in Roaring Penguin MIMEDefang 2.59 and 2.60 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via unspecified vectors.

  • CVE-2004-1098Jan 10, 2005
    risk 0.00cvss epss 0.02

    MIMEDefang in MIME-tools 5.414 allows remote attackers to bypass virus scanning capabilities via an e-mail attachment with a virus that contains an empty boundary string in the Content-Type header.