Vulnerability in MasqMail before 0.1.15 allows local users to gain privileges via piped aliases.
6.9AI Score
0.0004EPSS
Multiple buffer overflows in conf.c for Masqmail 0.1.x before 0.1.17, and 0.2.x before 0.2.15, allow local users to gain privileges via certain entries in the configuration file (-C option).
6.6AI Score
0.0004EPSS
masqmail before 0.2.18 allows remote attackers to execute arbitrary commands via crafted e-mail addresses that are not properly sanitized when creating a failed delivery message.
7.3AI Score
0.014EPSS
masqmail before 0.2.18 allows local users to overwrite arbitrary files via a symlink attack on a log file.
6AI Score
0.0004EPSS
masqmail 0.2.21 through 0.2.30 improperly calls seteuid() in src/log.c and src/masqmail.c that results in improper privilege dropping.
9.8CVSS
9.4AI Score
0.003EPSS