Mailscanner@* Security Vulnerabilities and Issues — Mailscanner@* CVE List

Lucene search

MailscannerMailscanner*

5 matches found

CVE•added 2019/11/12 9:15 p.m.•49 views

CVE-2010-3095

mailscanner before 4.79.11-2.1 might allow local users to overwrite arbitrary files via a symlink attack on certain temporary files. NOTE: this issue exists because of an incomplete fix for CVE-2008-5313.

4.7CVSS5.4AI score0.00069EPSS

CVE•added 2019/11/12 9:15 p.m.•42 views

CVE-2010-3292

The update{_bad,}_phishing_sites scripts in mailscanner 4.79.11-2 downloads files and trusts them without using encryption (e.g., https) or digital signature checking which could allow an attacker to replace certain configuration files (e.g., phishing whitelist) via dns/packet spoofing.

5.5CVSS5.5AI score0.00029EPSS

CVE•added 2007/10/14 8:0 p.m.•35 views

CVE-2002-2228

MailScanner before 4.0 5-1 and before 3.2 6-1 allows remote attackers to bypass protection via attachments with a filename with (1) extra leading spaces, (2) extra trailing spaces, or (3) alternate character encodings that cannot be processed by MailScanner.

6.4CVSS7.1AI score0.00178EPSS

CVE•added 2005/05/24 4:0 a.m.•34 views

CVE-2005-1706

Unknown vulnerability in MailScanner 4.41.3 and earlier, related to "incomplete reporting of viruses in zip files," allows remote attackers to bypass virus detection.

7.5CVSS7.1AI score0.00311EPSS

CVE•added 2019/10/28 3:15 p.m.•33 views

CVE-2010-3293

mailscanner can allow local users to prevent virus signatures from being updated

5.5CVSS5.4AI score0.00063EPSS