CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
89.0%
Buffer overflow in the NetWin DSMTP 2.7q in the NetWin dmail package allows remote attackers to execute arbitrary commands via a long ETRN request.
Vendor | Product | Version | CPE |
---|---|---|---|
netwin | dmail | 2.7 | cpe:2.3:a:netwin:dmail:2.7:*:*:*:*:*:*:* |
netwin | dmail | 2.7q | cpe:2.3:a:netwin:dmail:2.7q:*:*:*:*:*:*:* |
netwin | dmail | 2.8e | cpe:2.3:a:netwin:dmail:2.8e:*:*:*:*:*:*:* |
netwin | dmail | 2.8f | cpe:2.3:a:netwin:dmail:2.8f:*:*:*:*:*:*:* |
netwin | dmail | 2.8g | cpe:2.3:a:netwin:dmail:2.8g:*:*:*:*:*:*:* |
netwin | dmail | 2.8h | cpe:2.3:a:netwin:dmail:2.8h:*:*:*:*:*:*:* |