Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
procmail procmail vulnerabilities and exploits
(subscribe to this query)
NA
CVE-1999-0475
A race condition in how procmail handles .procmailrc files allows a local user to read arbitrary files available to the user who is running procmail.
Procmail Procmail
NA
CVE-2001-0905
Race condition in signal handling of procmail 3.20 and previous versions, when running setuid, allows local users to cause a denial of service or gain root privileges by sending a signal while a signal handling routine is already running.
Procmail Procmail
9.8
CVSSv3
CVE-2017-16844
Heap-based buffer overflow in the loadbuf function in formisc.c in formail in procmail 3.22 allows remote malicious users to cause a denial of service (application crash) or possibly execute arbitrary code via a crafted e-mail message because of a hardcoded realloc size, a differ...
Procmail Procmail 3.22
NA
CVE-1999-0439
Buffer overflow in procmail before version 3.12 allows remote or local malicious users to execute commands via expansions in the procmailrc configuration file.
Procmail Procmail
Caldera Openlinux
NA
CVE-2002-2034
The Email Sanitizer prior to 1.133 for Procmail allows remote malicious users to bypass the mail filter and execute arbitrary code via crafted recursive multipart MIME attachments.
John Hardin Procmail Email Sanitizer 1.131
John Hardin Procmail Email Sanitizer 1.132
NA
CVE-2006-5449
procmail in Ingo H3 prior to 1.1.2 Horde module allows remote authenticated users to execute arbitrary commands via shell metacharacters in the mailbox destination of a filter rule.
Horde Ingo H3
7
CVSSv3
CVE-2017-8284
The disas_insn function in target/i386/translate.c in QEMU prior to 2.9.0, when TCG mode without hardware acceleration is used, does not limit the instruction size, which allows local users to gain privileges by creating a modified basic block that injects code into a setuid prog...
Qemu Qemu
NA
CVE-2004-0104
Multiple format string vulnerabilities in Metamail 2.7 and previous versions allow remote malicious users to execute arbitrary code.
Sgi Propack 2.3
Metamail Corporation Metamail
Sgi Propack 2.4
Redhat Enterprise Linux 2.1
Redhat Linux Advanced Workstation 2.1
1 EDB exploit
NA
CVE-2004-0105
Multiple buffer overflows in Metamail 2.7 and previous versions allow remote malicious users to execute arbitrary code.
Sgi Propack 2.3
Metamail Corporation Metamail
Sgi Propack 2.4
Redhat Enterprise Linux 2.1
Redhat Linux Advanced Workstation 2.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started