Salim Gasmi: Security Vulnerabilities
Format string vulnerability in the ErrorLog function in cnf.c in Greylisting daemon (GLD) 1.3 and 1.4 allows remote attackers to execute arbitrary code via format string specifiers in data that is passed directly to syslog.
CVSS Score
7.5
EPSS Score
0.19
Published
2005-05-02
Multiple buffer overflows in the HandleChild function in server.c in Greylisting daemon (GLD) 1.3 and 1.4, when GLD is listening on a network interface, allow remote attackers to execute arbitrary code.
CVSS Score
10.0
EPSS Score
0.79
Published
2005-04-12