Ability Mail Server

CVEs (4)

CVE	Risk	CVSS	EPSS	Published	Description
CVE-2013-6162	0.03	—	0.01	Dec 21, 2013	Cross-site scripting (XSS) vulnerability in Code-Crafters Ability Mail Server 3.1.1 allows remote attackers to inject arbitrary web script or HTML via the body of an email.
CVE-2009-3445	0.00	—	0.01	Sep 28, 2009	Unspecified vulnerability in Code-Crafters Ability Mail Server before 2.70 allows remote attackers to cause a denial of service (daemon crash) via an IMAP4 FETCH command.
CVE-2007-6101	0.00	—	0.01	Nov 23, 2007	Ability Mail Server before 2.61 allows remote authenticated users to cause a denial of service (daemon crash) via (1) malformed number list ranges in unspecified IMAP commands, and possibly (2) a blank string in unspecified messages.
CVE-2004-2495	0.00	—	0.02	Dec 31, 2004	The (1) Webmail, (2) admin, and (3) SMTP services in Ability Mail Server 1.18 allow remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous connections to the service.

CVE-2013-6162Dec 21, 2013
risk 0.03cvss —epss 0.01
Cross-site scripting (XSS) vulnerability in Code-Crafters Ability Mail Server 3.1.1 allows remote attackers to inject arbitrary web script or HTML via the body of an email.
CVE-2009-3445Sep 28, 2009
risk 0.00cvss —epss 0.01
Unspecified vulnerability in Code-Crafters Ability Mail Server before 2.70 allows remote attackers to cause a denial of service (daemon crash) via an IMAP4 FETCH command.
CVE-2007-6101Nov 23, 2007
risk 0.00cvss —epss 0.01
Ability Mail Server before 2.61 allows remote authenticated users to cause a denial of service (daemon crash) via (1) malformed number list ranges in unspecified IMAP commands, and possibly (2) a blank string in unspecified messages.
CVE-2004-2495Dec 31, 2004
risk 0.00cvss —epss 0.02
The (1) Webmail, (2) admin, and (3) SMTP services in Ability Mail Server 1.18 allow remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous connections to the service.