RSS   Vulnerabilities for 'Qwikmail smtp'   RSS

2004-12-31
 
CVE-2004-2677

CWE-Other
 

 
Format string vulnerability in qwik-smtpd.c in QwikMail SMTP (qwik-smtpd) 0.3 and earlier allows remote attackers to execute arbitrary code via format specifiers in the (1) clientRcptTo array, and the (2) Received and (3) messageID variables, possibly involving HELO and hostname arguments.

 


Copyright 2024, cxsecurity.com

 

Back to Top