Double Precision Incorporated Courier Mta vulnerabilities
5 known vulnerabilities affecting double_precision_incorporated/courier_mta.
Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH3MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2004-0224P4HIGHCVSS 7.5v0.43v0.43.1+3 more2004-04-15
CVE-2004-0224 [HIGH] CVE-2004-0224: Multiple buffer overflows in (1) iso2022jp.c or (2) shiftjis.c for Courier-IMAP before 3.0.0, Courie
Multiple buffer overflows in (1) iso2022jp.c or (2) shiftjis.c for Courier-IMAP before 3.0.0, Courier before 0.45, and SqWebMail before 4.0.0 may allow remote attackers to execute arbitrary code "when Unicode character is out of BMP range."
nvdosv
CVE-2003-0040P4HIGHCVSS 7.5v0.37.32003-02-19
CVE-2003-0040 [HIGH] CVE-2003-0040: SQL injection vulnerability in the PostgreSQL auth module for courier 0.40 and earlier allows remote
SQL injection vulnerability in the PostgreSQL auth module for courier 0.40 and earlier allows remote attackers to execute SQL code via the user name.
nvdosv
CVE-2006-2659P4HIGHCVSS 7.8≤ 0.44.2v0.37.3+6 more2006-05-30
CVE-2006-2659 [HIGH] CVE-2006-2659: libs/comverp.c in Courier MTA before 0.53.2 allows attackers to cause a denial of service (CPU consu
libs/comverp.c in Courier MTA before 0.53.2 allows attackers to cause a denial of service (CPU consumption) via unknown vectors involving usernames that contain the "=" (equals) character, which is not properly handled during encoding.
nvdosv
CVE-2002-0914P4MEDIUMCVSS 5.0v0.38.12002-10-04
CVE-2002-0914 [MEDIUM] CVE-2002-0914: Double Precision Courier e-mail MTA allows remote attackers to cause a denial of service (CPU consum
Double Precision Courier e-mail MTA allows remote attackers to cause a denial of service (CPU consumption) via a message with an extremely large or negative value for the year, which causes a tight loop.
nvdosv
CVE-2002-1311P4MEDIUMCVSS 4.6v0.37.3v0.402002-11-29
CVE-2002-1311 [MEDIUM] CVE-2002-1311: Courier sqwebmail before 0.40.0 does not quickly drop privileges after startup in certain cases, whi
Courier sqwebmail before 0.40.0 does not quickly drop privileges after startup in certain cases, which could allow local users to read arbitrary files.
nvdosv