Vulnerabilities > Extremail > Extremail > 2.1.1
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2007-04-24 | CVE-2007-2188 | Buffer Overflow And DNS Spoofing vulnerability in Extremail 2.1/2.1.1 eXtremail 2.1.1 and earlier does not verify the ID field (aka transaction id) in DNS responses, which makes it easier for remote attackers to conduct DNS spoofing. | 10.0 |
2007-04-24 | CVE-2007-2187 | Buffer Overflow And DNS Spoofing vulnerability in Extremail 2.1/2.1.1 Stack-based buffer overflow in eXtremail 2.1.1 and earlier allows remote attackers to execute arbitrary code via a long DNS response. | 10.0 |