VYPR

SmarterMail

by SmarterMail

CVEs (2)

  • CVE-2010-3486Sep 22, 2010
    risk 0.03cvss epss 0.03

    Directory traversal vulnerability in FileStorageUpload.ashx in SmarterMail 7.1.3876 allows remote attackers to read arbitrary files via a (1) ../ (dot dot slash), (2) %5C (encoded backslash), or (3) %255c (double-encoded backslash) in the name parameter.

  • CVE-2008-1854Apr 16, 2008
    risk 0.03cvss epss 0.03

    Unspecified vulnerability in SmarterMail Web Server (SMWebSvr.exe) in SmarterMail 5.0.2999 allows remote attackers to cause a denial of service (service termination) via a long HTTP (1) GET, (2) HEAD, (3) PUT, (4) POST, or (5) TRACE request. NOTE: the provenance of this…