4 matches found
UBUNTU-CVE-2020-10958
In Dovecot before 2.3.10.1, a crafted SMTP/LMTP message triggers an unauthenticated use-after-free bug in submission-login, submission, or lmtp, and can lead to a crash under circumstances involving many newlines after a command...
PlayStation: SSRF on image renderer
Summary: image.api.np.km.playstation.net allows image urls to be passed via the image parameter It is possible to use this endpoint to send Gopher requests that result in SMTP messages being sent Steps To Reproduce: 1. Create a Gopher redirect PHP file to save to your server ', 'RCPT TO: ', 'DATA...
Critical OpenSMTPD Bug Opens Linux and OpenBSD Mail Servers to Hackers
Cybersecurity researchers have discovered a new critical vulnerability CVE-2020-7247 in the OpenSMTPD email server that could allow remote attackers to take complete control over BSD and many Linux based servers. OpenSMTPD is an open-source implementation of the server-side SMTP protocol that was...
CVE-2007-4565
CVE-2007-4565 affects fetchmail: sink.c has a NULL dereference when warning messages are rejected by a remote SMTP server, causing denial of service. Public records in 2009 advisories (RHSA-2009:1427 and derivatives) indicate updated fetchmail packages fix multiple issues, including CVE-2007-4565...