Vulnerabilities > Libspf
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-10-23 | CVE-2008-2469 | Improper Restriction of Operations Within the Bounds of A Memory Buffer vulnerability in Libspf Libspf2 Heap-based buffer overflow in the SPF_dns_resolv_lookup function in Spf_dns_resolv.c in libspf2 before 1.2.8 allows remote attackers to execute arbitrary code via a long DNS TXT record with a modified length field. | 10.0 |
2006-05-22 | CVE-2006-1520 | Remote Security vulnerability in Libspf 1.0.0P4 Format string vulnerability in ANSI C Sender Policy Framework library (libspf) before 1.0.0-p5, when debugging is enabled, allows remote attackers to execute arbitrary code via format string specifiers, possibly in an e-mail address. | 6.4 |