Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2024/02/21 12:0 a.m.44 views

Ubuntu 16.04 LTS : Libspf2 vulnerabilities (USN-6584-2)

The remote Ubuntu 16.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6584-2 advisory. USN-6584-1 fixed several vulnerabilities in Ubuntu 18.04 LTS and Ubuntu 20.04 LTS. This update provides the corresponding updates for CVE-2021-33912 and...

9.8CVSS7.6AI score0.09643EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2022/01/21 12:0 a.m.38 views

Debian DLA-2890-1 : libspf2 - LTS security update

The remote Debian 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the dla-2890 advisory. - libspf2 before 1.2.11 has a four-byte heap-based buffer overflow that might allow remote attackers to execute arbitrary code via an unauthenticated e-mail messag...

9.8CVSS8.3AI score0.09643EPSS
Exploits2References7
NVD
NVD
added 2022/01/19 6:15 p.m.19 views

CVE-2021-33912

libspf2 before 1.2.11 has a four-byte heap-based buffer overflow that might allow remote attackers to execute arbitrary code via an unauthenticated e-mail message from anywhere on the Internet with a crafted SPF DNS record, because of incorrect sprintf usage in SPFrecordexpanddata in spfexpand.c...

9.8CVSS0.09643EPSS
Exploits1References4
NVD
NVD
added 2022/01/19 6:15 p.m.23 views

CVE-2021-33913

libspf2 before 1.2.11 has a heap-based buffer overflow that might allow remote attackers to execute arbitrary code via an unauthenticated e-mail message from anywhere on the Internet with a crafted SPF DNS record, because of SPFrecordexpanddata in spfexpand.c. The amount of overflowed data depend...

9.8CVSS0.09643EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2022/01/19 6:15 p.m.24 views

CVE-2021-33913

libspf2 before 1.2.11 has a heap-based buffer overflow that might allow remote attackers to execute arbitrary code via an unauthenticated e-mail message from anywhere on the Internet with a crafted SPF DNS record, because of SPFrecordexpanddata in spfexpand.c. The amount of overflowed data depend...

9.8CVSS7.5AI score0.09643EPSS
Exploits1References4
UbuntuCve
UbuntuCve
added 2022/01/19 6:15 p.m.25 views

CVE-2021-33912

libspf2 before 1.2.11 has a four-byte heap-based buffer overflow that might allow remote attackers to execute arbitrary code via an unauthenticated e-mail message from anywhere on the Internet with a crafted SPF DNS record, because of incorrect sprintf usage in SPFrecordexpanddata in spfexpand.c...

9.8CVSS7.5AI score0.09643EPSS
Exploits1References4
Cvelist
Cvelist
added 2022/01/19 12:0 a.m.26 views

CVE-2021-33912

libspf2 before 1.2.11 has a four-byte heap-based buffer overflow that might allow remote attackers to execute arbitrary code via an unauthenticated e-mail message from anywhere on the Internet with a crafted SPF DNS record, because of incorrect sprintf usage in SPFrecordexpanddata in spfexpand.c...

10AI score0.09643EPSS
Exploits1References4
AlpineLinux
AlpineLinux
added 2022/01/19 12:0 a.m.35 views

CVE-2021-33912

libspf2 before 1.2.11 has a four-byte heap-based buffer overflow that might allow remote attackers to execute arbitrary code via an unauthenticated e-mail message from anywhere on the Internet with a crafted SPF DNS record, because of incorrect sprintf usage in SPFrecordexpanddata in spfexpand.c...

9.8CVSS9.9AI score0.09643EPSS
Exploits1
CVE
CVE
added 2022/01/19 12:0 a.m.115 views

CVE-2021-33913

CVE-2021-33912 and CVE-2021-33913 affect libspf2 prior to 1.2.11. Multiple advisories (Ubuntu USN-6584-1/2, Debian DLA-2890-1, Gentoo GLSA-202401-22, Debian DLA-2890) describe heap-based buffer overflows in SPF_record_expand_data and related code, which could allow remote attackers to execute arb...

9.8CVSS9.7AI score0.09643EPSS
Exploits1References4Affected Software1
Cvelist
Cvelist
added 2022/01/19 12:0 a.m.26 views

CVE-2021-33913

libspf2 before 1.2.11 has a heap-based buffer overflow that might allow remote attackers to execute arbitrary code via an unauthenticated e-mail message from anywhere on the Internet with a crafted SPF DNS record, because of SPFrecordexpanddata in spfexpand.c. The amount of overflowed data depend...

10AI score0.09643EPSS
Exploits1References4
Debian CVE
Debian CVE
added 2022/01/19 12:0 a.m.36 views

CVE-2021-33913

libspf2 before 1.2.11 has a heap-based buffer overflow that might allow remote attackers to execute arbitrary code via an unauthenticated e-mail message from anywhere on the Internet with a crafted SPF DNS record, because of SPFrecordexpanddata in spfexpand.c. The amount of overflowed data depend...

9.8CVSS9.9AI score0.09643EPSS
Exploits1
Rows per page
Query Builder