5 matches found
UBUNTU-CVE-2021-33913
libspf2 before 1.2.11 has a heap-based buffer overflow that might allow remote attackers to execute arbitrary code via an unauthenticated e-mail message from anywhere on the Internet with a crafted SPF DNS record, because of SPFrecordexpanddata in spfexpand.c. The amount of overflowed data depend...
Privilege escalation
The anti-spam scanner on Cisco Email Security Appliance ESA devices 3.3.1-09, 7.5.1-gpl-022, and 8.5.6-074 allows remote attackers to bypass intended e-mail restrictions via a malformed DNS SPF record, aka Bug IDs CSCuu35853 and CSCuu37733...
CVE-2015-4184
The anti-spam scanner on Cisco Email Security Appliance ESA devices 3.3.1-09, 7.5.1-gpl-022, and 8.5.6-074 allows remote attackers to bypass intended e-mail restrictions via a malformed DNS SPF record, aka Bug IDs CSCuu35853 and CSCuu37733...
CVE-2015-4184
The anti-spam scanner on Cisco Email Security Appliance ESA devices 3.3.1-09, 7.5.1-gpl-022, and 8.5.6-074 allows remote attackers to bypass intended e-mail restrictions via a malformed DNS SPF record, aka Bug IDs CSCuu35853 and CSCuu37733...
Courier Mail Server < 0.50.1 DNS SPF Record Lookup Failure Memory Corruption DoS
The remote host is running Courier Mail Server, an open source mail server for Linux and Unix. According to its banner, the installed version of Courier is prone to a remote denial of service vulnerability triggered when doing Sender Policy Framework SPF data lookups. To exploit this flaw, an...