← Back

Courier Mail Server

courier_mail_server

Vendor: Double Precision Incorporated • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2005-3532
1Double Precision Incorporated
1Courier Mail Server
Apr 16, 2026
Dec 11, 2005
N/A· v4
N/A· v3
7.5 HIGH· v2
authpam.c in courier-authdaemon for Courier Mail Server 0.37.3 through 0.52.1, when using pam_tally, does not call the pam_acct_mgmt function to verify that access should be granted, which allows attackers to authenticat...Show more
authpam.c in courier-authdaemon for Courier Mail Server 0.37.3 through 0.52.1, when using pam_tally, does not call the pam_acct_mgmt function to verify that access should be granted, which allows attackers to authenticate to the server using accounts that have been disabled.Show less
CVE-2005-2151
1Double Precision Incorporated
1Courier Mail Server
Apr 16, 2026
Jul 6, 2005
N/A· v4
N/A· v3
5.0 MEDIUM· v2
spf.c in Courier Mail Server does not properly handle DNS failures when looking up Sender Policy Framework (SPF) records, which could allow attackers to cause memory corruption.