Brian Stafford

1 exploit Active since Dec 2019
CVE-2019-19977 WRITEUP CRITICAL WRITEUP
libesmtp < 1.0.6 - Out-of-bounds Read in ntlm_build_type_2
libESMTP through 1.0.6 mishandles domain copying into a fixed-size buffer in ntlm_build_type_2 in ntlm/ntlmstruct.c, as demonstrated by a stack-based buffer over-read.
CVSS 9.8