Code Crafters
Products
2- 4 CVEs
- 2 CVEs
Recent CVEs
6| CVE | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|
| CVE-2004-1626 | 0.09 | — | 0.73 | Oct 22, 2004 | Buffer overflow in Ability Server 2.34, and possibly other versions, allows remote attackers to execute arbitrary code via a long STOR command. | ||
| CVE-2004-1627 | 0.04 | — | 0.17 | Oct 22, 2004 | Buffer overflow in Ability Server 2.25, 2.32, 2.34, and possibly other versions, allows remote attackers to execute arbitrary code via a long APPE command. | ||
| CVE-2013-6162 | 0.03 | — | 0.01 | Dec 21, 2013 | Cross-site scripting (XSS) vulnerability in Code-Crafters Ability Mail Server 3.1.1 allows remote attackers to inject arbitrary web script or HTML via the body of an email. | ||
| CVE-2009-3445 | 0.00 | — | 0.01 | Sep 28, 2009 | Unspecified vulnerability in Code-Crafters Ability Mail Server before 2.70 allows remote attackers to cause a denial of service (daemon crash) via an IMAP4 FETCH command. | ||
| CVE-2007-6101 | 0.00 | — | 0.01 | Nov 23, 2007 | Ability Mail Server before 2.61 allows remote authenticated users to cause a denial of service (daemon crash) via (1) malformed number list ranges in unspecified IMAP commands, and possibly (2) a blank string in unspecified messages. | ||
| CVE-2004-2495 | 0.00 | — | 0.02 | Dec 31, 2004 | The (1) Webmail, (2) admin, and (3) SMTP services in Ability Mail Server 1.18 allow remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous connections to the service. |
- CVE-2004-1626Oct 22, 2004risk 0.09cvss —epss 0.73
Buffer overflow in Ability Server 2.34, and possibly other versions, allows remote attackers to execute arbitrary code via a long STOR command.
- CVE-2004-1627Oct 22, 2004risk 0.04cvss —epss 0.17
Buffer overflow in Ability Server 2.25, 2.32, 2.34, and possibly other versions, allows remote attackers to execute arbitrary code via a long APPE command.
- CVE-2013-6162Dec 21, 2013risk 0.03cvss —epss 0.01
Cross-site scripting (XSS) vulnerability in Code-Crafters Ability Mail Server 3.1.1 allows remote attackers to inject arbitrary web script or HTML via the body of an email.
- CVE-2009-3445Sep 28, 2009risk 0.00cvss —epss 0.01
Unspecified vulnerability in Code-Crafters Ability Mail Server before 2.70 allows remote attackers to cause a denial of service (daemon crash) via an IMAP4 FETCH command.
- CVE-2007-6101Nov 23, 2007risk 0.00cvss —epss 0.01
Ability Mail Server before 2.61 allows remote authenticated users to cause a denial of service (daemon crash) via (1) malformed number list ranges in unspecified IMAP commands, and possibly (2) a blank string in unspecified messages.
- CVE-2004-2495Dec 31, 2004risk 0.00cvss —epss 0.02
The (1) Webmail, (2) admin, and (3) SMTP services in Ability Mail Server 1.18 allow remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous connections to the service.