Show filters
47 Total Results
Displaying 31-40 of 47
Sort by:
Attacker Value
Unknown
CVE-2004-1130
Disclosure Date: January 10, 2005 (last updated February 22, 2025)
Cross-site scripting (XSS) vulnerability in admin.asp in CMailServer 5.2 allows remote attackers to execute arbitrary web script or HTML via personal information fields, such as (1) username, (2) name, or (3) comments.
0
Attacker Value
Unknown
CVE-2004-2441
Disclosure Date: December 31, 2004 (last updated February 22, 2025)
Unspecified vulnerability in Kerio MailServer before 6.0.3 has unknown impact and unknown remote attack vectors, related to a "potential security issue."
0
Attacker Value
Unknown
CVE-2003-1177
Disclosure Date: December 31, 2003 (last updated February 22, 2025)
Buffer overflow in the base64 decoder in MERCUR Mailserver 4.2 before SP3a allows remote attackers to cause a denial of service and possibly execute arbitrary code via a long (1) AUTH command to the POP3 server or (2) AUTHENTICATE command to the IMAP server.
0
Attacker Value
Unknown
CVE-2003-1322
Disclosure Date: December 31, 2003 (last updated February 22, 2025)
Multiple stack-based buffer overflows in Atrium MERCUR IMAPD in MERCUR Mailserver before 4.2.15.0 allow remote attackers to execute arbitrary code via a long (1) EXAMINE, (2) DELETE, (3) SUBSCRIBE, (4) RENAME, (5) UNSUBSCRIBE, (6) LIST, (7) LSUB, (8) STATUS, (9) LOGIN, (10) CREATE, or (11) SELECT command.
0
Attacker Value
Unknown
CVE-2003-0488
Disclosure Date: August 07, 2003 (last updated February 22, 2025)
Multiple cross-site scripting (XSS) vulnerabilities in Kerio MailServer 5.6.3 allow remote attackers to insert arbitrary web script via (1) the add_name parameter in the add_acl module, or (2) the alias parameter in the do_map module.
0
Attacker Value
Unknown
CVE-2003-0487
Disclosure Date: August 07, 2003 (last updated February 22, 2025)
Multiple buffer overflows in Kerio MailServer 5.6.3 allow remote authenticated users to cause a denial of service and possibly execute arbitrary code via (1) a long showuser parameter in the do_subscribe module, (2) a long folder parameter in the add_acl module, (3) a long folder parameter in the list module, and (4) a long user parameter in the do_map module.
0
Attacker Value
Unknown
CVE-2003-0280
Disclosure Date: June 16, 2003 (last updated February 22, 2025)
Multiple buffer overflows in the SMTP Service for ESMTP CMailServer 4.0.2003.03.27 allow remote attackers to execute arbitrary code via long (1) MAIL FROM or (2) RCPT TO commands.
0
Attacker Value
Unknown
CVE-2002-1433
Disclosure Date: April 11, 2003 (last updated February 22, 2025)
Kerio MailServer 5.0 allows remote attackers to cause a denial of service (hang) via SYN packets to the supported network services.
0
Attacker Value
Unknown
CVE-2002-1434
Disclosure Date: April 11, 2003 (last updated February 22, 2025)
Multiple cross-site scripting (XSS) vulnerabilities in the Web mail module of Kerio MailServer 5.0 allow remote attackers to execute HTML script as other users via certain URLs.
0
Attacker Value
Unknown
CVE-2002-1073
Disclosure Date: October 04, 2002 (last updated February 22, 2025)
Buffer overflow in the control service for MERCUR Mailserver 4.2 allows remote attackers to execute arbitrary code via a long password.
0
