Vulnerabilities > Openbsd > Opensmtpd > 5.3.1

DATE CVE VULNERABILITY TITLE RISK
2017-10-16 CVE-2015-7687 Use After Free vulnerability in multiple products
Use-after-free vulnerability in OpenSMTPD before 5.7.2 allows remote attackers to cause a denial of service (crash) or execute arbitrary code via vectors involving req_ca_vrfy_smtp and req_ca_vrfy_mta.
network
low complexity
openbsd fedoraproject CWE-416
7.5
7.5
2014-05-27 CVE-2013-2125 Cryptographic Issues vulnerability in Openbsd Opensmtpd 5.3.1
OpenSMTPD before 5.3.2 does not properly handle SSL sessions, which allows remote attackers to cause a denial of service (connection blocking) by keeping a connection open.
network
low complexity
openbsd CWE-310
5.0
5.0