---

CVE-2020-8794 - log back

CVE-2020-8794 edited at 29 Feb 2020 15:46:19
Type	- Arbitrary code execution + Arbitrary command execution
Description	- An out-of-bounds read vulnerability has been found in the client-side code of OpenSMTPD <= 6.6.3p1, leading to arbitrary code execution via a crafted SMTP transaction. + An out-of-bounds read vulnerability has been found in the client-side code of OpenSMTPD <= 6.6.3p1, leading to arbitrary command execution via a crafted SMTP transaction.

CVE-2020-8794 edited at 25 Feb 2020 16:18:41
Severity	- Unknown + Critical
Remote	- Unknown + Remote
Type	- Unknown + Arbitrary code execution
Description	+ An out-of-bounds read vulnerability has been found in the client-side code of OpenSMTPD <= 6.6.3p1, leading to arbitrary code execution via a crafted SMTP transaction.
References	+ https://www.qualys.com/2020/02/24/cve-2020-8794/lpe-rce-opensmtpd-default-install.txt
Notes

CVE-2020-8794 created at 25 Feb 2020 16:16:21