Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Spamdyke Subscribe
Filtered by product Spamdyke
Total 3 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-0070 1 Spamdyke 1 Spamdyke 2020-01-23 5.0 MEDIUM 7.5 HIGH
spamdyke prior to 4.2.1: STARTTLS reveals plaintext
CVE-2008-2784 1 Spamdyke 1 Spamdyke 2017-08-07 6.4 MEDIUM N/A
The smtp_filter function in spamdyke before 3.1.8 does not filter RCPT commands after encountering the first DATA command, which allows remote attackers to use the server as an open mail relay by sending RCPT commands with invalid recipients, followed by a DATA command, followed by arbitrary RCPT commands and a second DATA command.
CVE-2012-0802 1 Spamdyke 1 Spamdyke 2012-06-19 7.5 HIGH N/A
Multiple buffer overflows in Spamdyke before 4.3.0 might allow remote attackers to execute arbitrary code via vectors related to "serious errors in the usage of snprintf()/vsnprintf()" in which the return values may be larger than the size of the buffer.