Lucene search
K

6 matches found

NVD
NVD
added 2020/05/26 1:15 p.m.17 views

CVE-2020-3812

qmail-verify as used in netqmail 1.06 is prone to an information disclosure vulnerability. A local attacker can test for the existence of files and directories anywhere in the filesystem because qmail-verify runs as root and tests for the existence of files in the attacker's home directory, witho...

5.5CVSS6.9AI score0.00425EPSS
Exploits2References5
CVE
CVE
added 2020/05/26 1:4 p.m.89 views

CVE-2020-3811

CVE-2020-3811 affects netqmail 1.06 (qmail-verify) where improper input handling allows a mail-address verification bypass. Connected Debian/Ubuntu advisories (DLA-2234, USN-4621-1, USN-4556-1) indicate this vulnerability alongside CVE-2020-3812 and older CVEs; mitigation in Debian for Jessie is ...

7.5CVSS8.3AI score0.01768EPSS
Exploits2References5Affected Software1
Debian CVE
Debian CVE
added 2020/05/26 1:4 p.m.25 views

CVE-2020-3811

Removed by vendor...

7.5CVSS7.5AI score0.01768EPSS
Exploits2
Exploit DB
Exploit DB
added 2017/10/02 12:0 a.m.195 views

Qmail SMTP - Bash Environment Variable Injection (Metasploit)

This module requires Metasploit: http://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Qmail SMTP Bash Environment Variable Injection Shellshock', 'Description' = %q This module exploits a shellshock vulnerability on Qmail, a public...

10CVSS7.4AI score0.99999EPSS
Exploits130
Prion
Prion
added 2011/03/16 10:55 p.m.33 views

Command injection

The STARTTLS implementation in qmail-smtpd.c in qmail-smtpd in the netqmail-1.06-tls patch for netqmail 1.06 does not properly restrict I/O buffering, which allows man-in-the-middle attackers to insert commands into encrypted SMTP sessions by sending a cleartext command that is processed after TL...

6.8CVSS6.8AI score0.16334EPSS
Exploits2References9Affected Software1
Debian CVE
Debian CVE
added 2011/03/16 10:0 p.m.31 views

CVE-2011-1431

Removed by vendor...

6.8CVSS9.3AI score0.04593EPSS
Exploits1
Rows per page
Query Builder