MiracleLinux 4 : python-docs-2.6.6-2.AXS4 (AXSA:2011-586:01)

The remote MiracleLinux 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the AXSA:2011-586:01 advisory. The python-docs package contains documentation on the Python programming language and interpreter. Install the python-docs package if you'd like to u...

CVE-1999-0261

Netmanager Chameleon SMTPd has several buffer overflows that cause a crash...

UBUNTU-CVE-2025-62875

An Improper Check for Unusual or Exceptional Conditions vulnerability in OpenSMTPD allows local users to crash OpenSMTPD. This issue affects openSUSE Tumbleweed: from ? before 7.8.0p0-1.1...

CVE-2025-62875

OpenSMTPD contains an improper check for unusual or exceptional conditions that allows a local user to crash the daemon (local DoS) via a UNIX domain socket (smtpd.sock). Affected product: OpenSMTPD on openSUSE Tumbleweed, affected versions are prior to 7.8.0p0-1.1. Root cause is an insufficient ...

OpenSMTPD < 6.6.4 Multiple Vulnerabilities (Feb 2020)

OpenSMTPD is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:openbsd:opensmtpd"; ifdescription...

EUVD-2004-1288

Malware in sbrugna...

EUVD-2004-0923

Malware in sbrugna...

EUVD-2011-1436

Malware in sbrugna...

EUVD-2019-9139

Malware in sbrugna...

EUVD-2010-3491

Malware in sbrugna...

EUVD-2024-1830

Malicious code in bioql PyPI...

Linux Distros Unpatched Vulnerability : CVE-2020-8793

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenSMTPD before 6.6.4 allows local users to read arbitrary files e.g., on some Linux distributions because of a combination of an untrusted search path in...

Linux Distros Unpatched Vulnerability : CVE-2020-8794

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - OpenSMTPD before 6.6.4 allows remote code execution because of an out-of-bounds read in mtaio in mtasession.c for multi-line replies. Although this vulnerabilit...

Linux Distros Unpatched Vulnerability : CVE-2020-35680

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - smtpd/lkafilter.c in OpenSMTPD before 6.8.0p1, in certain configurations, allows remote attackers to cause a denial of service NULL pointer dereference and daem...

CVE-2019-19521

libc in OpenBSD 6.6 allows authentication bypass via the -schallenge username, as demonstrated by smtpd, ldapd, or radiusd. This is related to gen/authsubr.c and gen/authenticate.c in libc and login/login.c and xenocara/app/xenodm/greeter/verify.c...

CVE-2024-34083

aiosmptd is a reimplementation of the Python stdlib smtpd.py based on asyncio. Prior to version 1.4.6, servers based on aiosmtpd accept extra unencrypted commands after STARTTLS, treating them as if they came from inside the encrypted connection. This could be exploited by a man-in-the-middle...

SUSE CVE-2023-51764

Postfix through 3.8.5 allows SMTP smuggling unless configured with smtpddatarestrictions=rejectunauthpipelining and smtpddiscardehlokeywords=chunking or certain other options that exist in recent versions. Remote attackers can use a published exploitation technique to inject e-mail messages with ...

AZL-35110 CVE-2023-51764 affecting package postfix for versions less than 3.9.0-1

Postfix through 3.8.5 allows SMTP smuggling unless configured with smtpddatarestrictions=rejectunauthpipelining and smtpddiscardehlokeywords=chunking or certain other options that exist in recent versions. Remote attackers can use a published exploitation technique to inject e-mail messages with ...

Amazon Linux 2023 : opensmtpd (ALAS2023-2023-221)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2023-221 advisory. asciiloadsockaddr in smtpd in OpenBSD before 7.1 errata 024 and 7.2 before errata 020, and OpenSMTPD Portable through 7.0.0-portable, can abort upon a connection from a local, scoped IPv6 address...

CVE-2023-29323

asciiloadsockaddr in smtpd in OpenBSD before 7.1 errata 024 and 7.2 before errata 020, and OpenSMTPD Portable before 7.0.0-portable commit f748277, can abort upon a connection from a local, scoped IPv6 address...