Dan Bernstein » Qmail : Security Vulnerabilities, CVEs,
Integer signedness error in the qmail_put and substdio_put functions in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a large number of SMTP RCPT TO commands.
Max CVSS
5.0
EPSS Score
3.34%
Published
2005-05-11
Updated
2020-10-05
commands.c in qmail, when running on 64 bit platforms with a large amount of virtual memory, allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long SMTP command without a space character, which causes an array to be referenced with a negative index.
Max CVSS
5.0
EPSS Score
5.01%
Published
2005-05-11
Updated
2020-10-05
Denial of service in Qmail through long SMTP commands.
Max CVSS
10.0
EPSS Score
1.83%
Published
1997-07-01
Updated
2016-10-18
3 vulnerabilities found