Weak installation folder permissions allow privilege escalation to LocalSystem on any logged in user account. Spam filtering can be controlled from malcrafted Web page.
vulners.com/securityvulns/securityvulns:doc:14175
vulners.com/securityvulns/securityvulns:doc:14260
vulners.com/securityvulns/securityvulns:doc:17675