VYPR

Messaging Server

by Netscape

CVEs (5)

  • CVE-1999-0005Jul 20, 1998
    risk 0.05cvss epss 0.18

    Arbitrary command execution via IMAP buffer overflow in authenticate command.

  • CVE-1999-1532Oct 29, 1999
    risk 0.03cvss epss 0.02

    Netscape Messaging Server 3.54, 3.55, and 3.6 allows a remote attacker to cause a denial of service (memory exhaustion) via a series of long RCPT TO commands.

  • CVE-1999-0007Jun 26, 1998
    risk 0.01cvss epss 0.08

    Information from SSL-encrypted sessions via PKCS #1.

  • CVE-2000-0960Dec 19, 2000
    risk 0.00cvss epss 0.02

    The POP3 server in Netscape Messaging Server 4.15p1 generates different error messages for incorrect user names versus incorrect passwords, which allows remote attackers to determine valid users on the system and harvest email addresses for spam abuse.

  • CVE-2000-0961Dec 19, 2000
    risk 0.00cvss epss 0.02

    Buffer overflow in IMAP server in Netscape Messaging Server 4.15 Patch 2 allows local users to execute arbitrary commands via a long LIST command.

VYPR — Vulnerability Intelligence