Double Precision Incorporated » Courier Mta » 0.43 : Security Vulnerabilities, CVEs,
libs/comverp.c in Courier MTA before 0.53.2 allows attackers to cause a denial of service (CPU consumption) via unknown vectors involving usernames that contain the "=" (equals) character, which is not properly handled during encoding.
Max CVSS
7.8
EPSS Score
8.57%
Published
2006-05-30
Updated
2018-10-03
Multiple buffer overflows in (1) iso2022jp.c or (2) shiftjis.c for Courier-IMAP before 3.0.0, Courier before 0.45, and SqWebMail before 4.0.0 may allow remote attackers to execute arbitrary code "when Unicode character is out of BMP range."
Max CVSS
7.5
EPSS Score
2.92%
Published
2004-04-15
Updated
2017-07-11
2 vulnerabilities found