Aggregates CVE and security vulnerability intelligence across all spamdyke-related products, including CVSS, EPSS, publication dates, and vulnerability intelligence data.
Disclosed issues often relate to vendor risk buffer overflow; exposure may include vendor impact application crash and vendor impact memory corruption in vendor surface production workloads contexts.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2012-0070 | spamdyke prior to 4.2.1: STARTTLS reveals plaintext | [email protected] | 7.5 | 0.94% | 2020-01-15 | 2026-06-16 |
| CVE-2012-0802 | Multiple buffer overflows in Spamdyke before 4.3.0 might allow remote attackers to execute arbitrary code via vectors related to "serious errors in the usage of snprintf()/vsnprintf()" in which the return values may be larger than the size of the buffer. | [email protected] | 7.5 | 4.57% | 2012-06-19 | 2026-06-16 |
| CVE-2008-2784 | The smtp_filter function in spamdyke before 3.1.8 does not filter RCPT commands after encountering the first DATA command, which allows remote attackers to use the server as an open mail relay by sending RCPT commands with invalid recipients, followed by a DATA command, followed by arbitrary RCPT commands and a second DATA command. | [email protected] | 6.4 | 1.36% | 2008-06-19 | 2026-06-16 |