FreshPorts - VuXML

This page displays vulnerability information about FreeBSD Ports.

The VUXML data was last processed by FreshPorts on 2025-02-13 20:06:50 UTC

List all Vulnerabilities, by package

List all Vulnerabilities, by date

k68

These are the vulnerabilities relating to the commit you have selected:

VuXML ID	Description
debbb39c-fdb3-11d9-a30d-00b0d09acbfc	nbsmtp -- format string vulnerability When nbsmtp is executed in debug mode, server messages will be printed to stdout and logged via syslog. Syslog is used insecurely and user-supplied format characters are directly fed to the syslog function, which results in a format string vulnerability. Under some circumstances, an SMTP server may be able to abuse this vulnerability in order to alter the nbsmtp process and execute malicious code. Discovery 2005-07-25 Entry 2005-08-01 nbsmtp < 0.99_1 http://people.freebsd.org/~niels/issues/nbsmtp-20050726.txt

VuXML ID

Description

debbb39c-fdb3-11d9-a30d-00b0d09acbfc

nbsmtp -- format string vulnerability

When nbsmtp is executed in debug mode, server messages will be printed to stdout and logged via syslog. Syslog is used insecurely and user-supplied format characters are directly fed to the syslog function, which results in a format string vulnerability.

Under some circumstances, an SMTP server may be able to abuse this vulnerability in order to alter the nbsmtp process and execute malicious code.

Discovery 2005-07-25
Entry 2005-08-01
nbsmtp

< 0.99_1

http://people.freebsd.org/~niels/issues/nbsmtp-20050726.txt