Metamail Corporation » Metamail : Security Vulnerabilities, CVEs, Published In 2004
Extcompose in metamail does not verify the output file before writing to it, which allows local users to overwrite arbitrary files via a symlink attack.
Max CVSS
2.1
EPSS Score
0.04%
Published
2004-12-31
Updated
2017-07-11
Multiple buffer overflows in Metamail 2.7 and earlier allow remote attackers to execute arbitrary code.
Max CVSS
7.5
EPSS Score
19.69%
Published
2004-03-03
Updated
2017-07-11
Multiple format string vulnerabilities in Metamail 2.7 and earlier allow remote attackers to execute arbitrary code.
Max CVSS
7.5
EPSS Score
92.58%
Published
2004-03-03
Updated
2017-07-11
3 vulnerabilities found