Mailscanner: >> Mailscanner >> 3.20-4 Security Vulnerabilities
mailscanner before 4.79.11-2.1 might allow local users to overwrite arbitrary files via a symlink attack on certain temporary files. NOTE: this issue exists because of an incomplete fix for CVE-2008-5313.
CVSS Score
4.7
EPSS Score
0.001
Published
2019-11-12
mailscanner can allow local users to prevent virus signatures from being updated
CVSS Score
5.5
EPSS Score
0.001
Published
2019-10-28
Directory traversal vulnerability in docs.php in MailWatch for MailScanner 1.0.4 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the doc parameter.
CVSS Score
7.5
EPSS Score
0.015
Published
2009-01-28
Unknown vulnerability in MailScanner 4.41.3 and earlier, related to "incomplete reporting of viruses in zip files," allows remote attackers to bypass virus detection.
CVSS Score
7.5
EPSS Score
0.003
Published
2005-05-24
MailScanner before 4.0 5-1 and before 3.2 6-1 allows remote attackers to bypass protection via attachments with a filename with (1) extra leading spaces, (2) extra trailing spaces, or (3) alternate character encodings that cannot be processed by MailScanner.
CVSS Score
6.4
EPSS Score
0.002
Published
2002-12-31