Cmail
by Computalynx
CVEs (6)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-1999-1521 | 0.04 | — | 0.08 | Sep 12, 1999 | Computalynx CMail 2.4 and CMail 2.3 SP2 SMTP servers are vulnerable to a buffer overflow attack in the MAIL FROM command that may allow a remote attacker to execute arbitrary code on the server. | |||
| CVE-2020-10512 | 0.00 | — | 0.01 | Apr 15, 2020 | HGiga C&Cmail CCMAILQ before olln-calendar-6.0-100.i386.rpm and CCMAILN before olln-calendar-5.0-100.i386.rpm contains a SQL Injection vulnerability which allows attackers to injecting SQL commands in the URL parameter to execute unauthorized commands. | |||
| CVE-2020-10511 | 0.00 | — | 0.02 | Apr 15, 2020 | HGiga C&Cmail CCMAILQ before olln-base-6.0-418.i386.rpm and CCMAILN before olln-base-5.0-418.i386.rpm contains insecure configurations. Attackers can exploit these flaws to access unauthorized functionality via a crafted URL. | |||
| CVE-2001-0742 | 0.00 | — | 0.01 | Oct 18, 2001 | Buffer overflow in Computalynx CMail POP3 mail server 2.4.9 allows remote attackers to run arbitrary code via a long HELO command. | |||
| CVE-2000-0556 | 0.00 | — | 0.02 | Jun 5, 2000 | Buffer overflow in the web interface for Cmail 2.4.7 allows remote attackers to cause a denial of service by sending a large user name to the user dialog running on port 8002. | |||
| CVE-2000-0557 | 0.00 | — | 0.04 | Jun 5, 2000 | Buffer overflow in the web interface for Cmail 2.4.7 allows remote attackers to execute arbitrary commands via a long GET request. |
- CVE-1999-1521Sep 12, 1999risk 0.04cvss —epss 0.08
Computalynx CMail 2.4 and CMail 2.3 SP2 SMTP servers are vulnerable to a buffer overflow attack in the MAIL FROM command that may allow a remote attacker to execute arbitrary code on the server.
- CVE-2020-10512Apr 15, 2020risk 0.00cvss —epss 0.01
HGiga C&Cmail CCMAILQ before olln-calendar-6.0-100.i386.rpm and CCMAILN before olln-calendar-5.0-100.i386.rpm contains a SQL Injection vulnerability which allows attackers to injecting SQL commands in the URL parameter to execute unauthorized commands.
- CVE-2020-10511Apr 15, 2020risk 0.00cvss —epss 0.02
HGiga C&Cmail CCMAILQ before olln-base-6.0-418.i386.rpm and CCMAILN before olln-base-5.0-418.i386.rpm contains insecure configurations. Attackers can exploit these flaws to access unauthorized functionality via a crafted URL.
- CVE-2001-0742Oct 18, 2001risk 0.00cvss —epss 0.01
Buffer overflow in Computalynx CMail POP3 mail server 2.4.9 allows remote attackers to run arbitrary code via a long HELO command.
- CVE-2000-0556Jun 5, 2000risk 0.00cvss —epss 0.02
Buffer overflow in the web interface for Cmail 2.4.7 allows remote attackers to cause a denial of service by sending a large user name to the user dialog running on port 8002.
- CVE-2000-0557Jun 5, 2000risk 0.00cvss —epss 0.04
Buffer overflow in the web interface for Cmail 2.4.7 allows remote attackers to execute arbitrary commands via a long GET request.