VYPR
Unrated severityNVD Advisory· Published Jul 20, 2001· Updated Jun 16, 2026

CVE-2001-1355

CVE-2001-1355

Description

Buffer overflows in NetWin Authentication Module (NWAuth) 3.0b and earlier, as implemented in DMail, SurgeFTP, and possibly other packages, could allow attackers to execute arbitrary code via long arguments to (1) the -del command or (2) the -lookup command.

Affected products

13
  • Netwin/Dmail9 versions
    cpe:2.3:a:netwin:dmail:2.5d:*:*:*:*:*:*:*+ 8 more
    • cpe:2.3:a:netwin:dmail:2.5d:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:dmail:2.7:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:dmail:2.7q:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:dmail:2.7r:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:dmail:2.8e:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:dmail:2.8f:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:dmail:2.8g:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:dmail:2.8h:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:dmail:2.8i:*:*:*:*:*:*:*
  • Netwin/Surgeftp3 versions
    cpe:2.3:a:netwin:surgeftp:1.0b:*:*:*:*:*:*:*+ 2 more
    • cpe:2.3:a:netwin:surgeftp:1.0b:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgeftp:2.0a:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgeftp:2.0b:*:*:*:*:*:*:*

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.