Buffer overflow in smail 3.2.0.120 allows remote attackers or local users to execute arbitrary code via a long string in the MAIL FROM command and possibly other SMTP commands.
Max CVSS
10.0
EPSS Score
1.98%
Published
2005-03-28
Updated
2016-10-18
modes.c in smail 3.2.0.120 implements signal handlers with certain unsafe library calls, which may allow attackers to execute arbitrary code via signal handler race conditions, possibly using xmalloc.
Max CVSS
7.6
EPSS Score
0.09%
Published
2005-05-02
Updated
2016-10-18
2 vulnerabilities found