Lucene search
K

6 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 3:47 a.m.3 views

SUSE CVE-2021-20314

Stack buffer overflow in libspf2 versions below 1.2.11 when processing certain SPF macros can lead to Denial of service and potentially code execution via malicious crafted SPF explanation messages...

9.8CVSS8.2AI score0.0281EPSS
Exploits0References4
OSV
OSV
added 2022/01/19 6:15 p.m.1 views

DEBIAN-CVE-2021-33912

libspf2 before 1.2.11 has a four-byte heap-based buffer overflow that might allow remote attackers to execute arbitrary code via an unauthenticated e-mail message from anywhere on the Internet with a crafted SPF DNS record, because of incorrect sprintf usage in SPFrecordexpanddata in spfexpand.c...

9.8CVSS8.6AI score0.09643EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2022/01/19 12:0 a.m.3 views

PT-2022-10300 · Libspf2 +3 · Libspf2 +3

Name of the Vulnerable Software and Affected Versions: libspf2 versions prior to 1.2.11 Description: The issue is a heap-based buffer overflow that might allow remote attackers to execute arbitrary code via an unauthenticated e-mail message from anywhere on the Internet with a crafted SPF DNS...

9.8CVSS8.3AI score0.51474EPSS
Exploits2References36
Positive Technologies
Positive Technologies
added 2021/08/11 12:0 a.m.1 views

PT-2021-3909 · Libspf2 +4 · Libspf2 +4

Name of the Vulnerable Software and Affected Versions: libspf2 versions prior to 1.2.11 Description: The issue is related to a stack buffer overflow in libspf2 when processing certain SPF macros, which can lead to Denial of service and potentially code execution via maliciously crafted SPF...

10CVSS8.3AI score0.51474EPSS
Exploits2References56
Hacker One
Hacker One
added 2020/08/20 3:33 a.m.125 views

Dropcontact: No Valid SPF Records

Hiii, There is any issue No valid SPF Records Desciprition : There is a email spoofing vulnerability.Email spoofing is the forgery of an email header so that the message appears to have originated from someone or somewhere other than the actual source. Email spoofing is a tactic used in phishing...

7.1AI score
Exploits0
OSV
OSV
added 2008/10/23 10:0 p.m.2 views

DEBIAN-CVE-2008-2469

Heap-based buffer overflow in the SPFdnsresolvlookup function in Spfdnsresolv.c in libspf2 before 1.2.8 allows remote attackers to execute arbitrary code via a long DNS TXT record with a modified length field...

10CVSS8.4AI score0.2225EPSS
Exploits2References1
Rows per page
Query Builder