masqmail before 0.2.18 allows local users to overwrite arbitrary files via a symlink attack on a log file.
Max CVSS
2.1
EPSS Score
0.04%
Published
2005-09-21
Updated
2017-07-11
masqmail before 0.2.18 allows remote attackers to execute arbitrary commands via crafted e-mail addresses that are not properly sanitized when creating a failed delivery message.
Max CVSS
7.5
EPSS Score
1.90%
Published
2005-09-21
Updated
2017-07-11
Multiple buffer overflows in conf.c for Masqmail 0.1.x before 0.1.17, and 0.2.x before 0.2.15, allow local users to gain privileges via certain entries in the configuration file (-C option).
Max CVSS
7.2
EPSS Score
0.04%
Published
2002-11-29
Updated
2008-09-10
Vulnerability in MasqMail before 0.1.15 allows local users to gain privileges via piped aliases.
Max CVSS
7.2
EPSS Score
0.04%
Published
2001-07-26
Updated
2008-09-10
4 vulnerabilities found