Vulnerabilities > Extremail > Extremail > 2.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-04-24 | CVE-2007-2188 | Buffer Overflow And DNS Spoofing vulnerability in Extremail 2.1/2.1.1 eXtremail 2.1.1 and earlier does not verify the ID field (aka transaction id) in DNS responses, which makes it easier for remote attackers to conduct DNS spoofing. | 10.0 |
| 2007-04-24 | CVE-2007-2187 | Buffer Overflow And DNS Spoofing vulnerability in Extremail 2.1/2.1.1 Stack-based buffer overflow in eXtremail 2.1.1 and earlier allows remote attackers to execute arbitrary code via a long DNS response. | 10.0 |
| 2007-01-13 | CVE-2006-6926 | Buffer Overflow vulnerability in Extremail 2.1 Buffer overflow in eXtremail 2.1 has unknown impact and attack vectors, as demonstrated by VulnDisco Pack. | 10.0 |