VYPR
Unrated severityNVD Advisory· Published Feb 27, 2008· Updated Jun 16, 2026

CVE-2008-1055

CVE-2008-1055

Description

Format string vulnerability in webmail.exe in NetWin SurgeMail 38k4 and earlier and beta 39a, and WebMail 3.1s and earlier, allows remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via format string specifiers in the page parameter.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

27
  • Netwin/Surgemail25 versions
    cpe:2.3:a:netwin:surgemail:*:*:*:*:*:*:*:*+ 24 more
    • cpe:2.3:a:netwin:surgemail:*:*:*:*:*:*:*:*range: <=38k4
    • cpe:2.3:a:netwin:surgemail:1.8a:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:1.8b3:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:1.8d:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:1.8e:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:1.8g3:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:1.9:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:1.9b2:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:2.0a2:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:2.0c:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:2.0e:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:2.0g2:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:2.1a:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:2.1c7:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:2.2a6:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:2.2c10:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:2.2c9:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:2.2g2:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:2.2g3:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:3.0a:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:3.0c2:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:3.8f3:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:39a:*:*:*:*:*:*:*
    • cpe:2.3:a:netwin:surgemail:beta_39a:*:*:*:*:*:*:*
    • (no CPE)range: <=38k4, beta 39a
  • Netwin/Webmail2 versions
    cpe:2.3:a:netwin:webmail:*:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:netwin:webmail:*:*:*:*:*:*:*:*range: <=3.1s
    • (no CPE)range: <=3.1s

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.