Tabslab Mailcarrier vulnerabilities
4 known vulnerabilities affecting tabslab/mailcarrier.
Total CVEs
4
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL4
Vulnerabilities
Page 1 of 1
CVE-2019-25646P2CRITICALCVSS 9.8v2.5.12026-03-24
CVE-2019-25646 [CRITICAL] CWE-787 CVE-2019-25646: Tabs Mail Carrier 2.5.1 contains a buffer overflow vulnerability in the MAIL FROM SMTP command that
Tabs Mail Carrier 2.5.1 contains a buffer overflow vulnerability in the MAIL FROM SMTP command that allows remote attackers to execute arbitrary code by sending a crafted MAIL FROM parameter. Attackers can connect to the SMTP service on port 25 and send a malicious MAIL FROM command with an oversized buffer to overwrite the EIP register and execute
nvd
CVE-2019-11395P3CRITICALCVSS 9.8v2.512019-04-22
CVE-2019-11395 [CRITICAL] CWE-787 CVE-2019-11395: A buffer overflow in MailCarrier 2.51 allows remote attackers to execute arbitrary code via a long s
A buffer overflow in MailCarrier 2.51 allows remote attackers to execute arbitrary code via a long string, as demonstrated by SMTP RCPT TO, POP3 USER, POP3 LIST, POP3 TOP, or POP3 RETR.
nvd
CVE-2019-25364P3CRITICALCVSS 9.8v2.512026-02-18
CVE-2019-25364 [CRITICAL] CWE-121 CVE-2019-25364: MailCarrier 2.51 contains a buffer overflow vulnerability in the POP3 USER command that allows remot
MailCarrier 2.51 contains a buffer overflow vulnerability in the POP3 USER command that allows remote attackers to execute arbitrary code. Attackers can send a crafted oversized buffer to the POP3 service, overwriting memory and potentially gaining remote system access.
nvd
CVE-2019-11682P3CRITICALCVSS 9.8v2.512019-05-02
CVE-2019-11682 [CRITICAL] CVE-2019-11682: A buffer overflow in the SMTP response service in MailCarrier 2.51 allows the attacker to execute ar
A buffer overflow in the SMTP response service in MailCarrier 2.51 allows the attacker to execute arbitrary code remotely via a long HELP command, a related issue to CVE-2019-11395.
nvd