CVE-2025-61084

MDaemon Mail Server 23.5.2 validates SPF, DKIM, and DMARC using the email enclosed in angle brackets in the From: header of SMTP DATA. An attacker can craft a From: header with multiple invisible Unicode thin spaces to display a spoofed sender while passing validation, allowing email spoofing eve...

CVE-2025-61084

MDaemon Mail Server 23.5.2 is described as validating SPF, DKIM, and DMARC using the From header content enclosed in angle brackets () during SMTP DATA. An attacker can craft a From header using multiple invisible Unicode thin spaces to display a spoofed sender while still passing validation, ena...

MDaemon Mail Server 安全漏洞

MDaemon Mail Server is an e-mail server software from MDaemon Inc. in the United States. A security vulnerability exists in MDaemon Mail Server version 23.5.2, which originates from a flaw in the use of email validation SPF, DKIM, and DMARC using the pointed brackets in the From header of the SMT...

PT-2025-45105

Name of the Vulnerable Software and Affected Versions MDaemon Mail Server version 23.5.2 Description MDaemon Mail Server version 23.5.2 validates Sender Policy Framework SPF, DomainKeys Identified Mail DKIM, and Domain-based Message Authentication, Reporting & Conformance DMARC using the email...

Alt-N MDaemon 2.8.5 0 WebConfig Overflow DoS Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/820/info The Mdaemon mail server for Windows includes a small web server for web-based remote administration. This webserver is vulnerable due to an unchecked buffer that handles incoming GET requests. An abnormally large...

[Hat-Squad] Remote buffer overflow in Mdaemon Raw message Handler

Hat-Squad Security Team Advisory http://www.hat-squad.com Product: Alt-N Technologies Mdaemon Mail Server Version: MDaemon 6.85 and Below to 6.52 Vulnerability: Remote buffer overflow in Raw Message Handler Release Date: 12/29/2003 Vendor Status: Informed on 29 Dec 2003 Quick response on 29 Dec...

mdaemon-raw.txt

Hat-Squad Security Team Advisory http://www.hat-squad.com Product: Alt-N Technologies Mdaemon Mail Server Version: MDaemon 6.85 and Below to 6.52 Vulnerability: Remote buffer overflow in Raw Message Handler Release Date: 12/29/2003 Vendor Status: Informed on 29 Dec 2003 Quick response on 29 Dec...

Possible DOS on MDConfig (MDaemon)

MDaemon mail server for Windows comes with a utility called MDConfig to remotely administer a MDaemon server. To establish MDConfig connection to a MDaemon server, an administrator must enable MDConfig server on the server machine. Connection will be established on a predefined TCP port, by defau...

Deerfield Communications MDaemon Mail Server DoS

Deerfield Communications the Wingate perpetrators MDaemon POP server is vulnerable to bigass usernames causing a DoS. MDaemon is a mail server package for 95,98,NT and Win2k. Many systems that run Deerfield's World Client web-mail also use MDaemon. Exploit tested on Win2kpro running MDaemon 3.0.3...

Alt-N MDaemon 2.8.5 - WebConfig Overflow Denial of Service

Alt-N MDaemon 2.8.5 - WebConfig Overflow Denial of Service source: https://www.securityfocus.com/bid/820/info The Mdaemon mail server for Windows includes a small web server for web-based remote administration. This webserver is vulnerable due to an unchecked buffer that handles incoming GET...

Alt-N MDaemon 2.8.5 - WebConfig Overflow Denial of Service

source: https://www.securityfocus.com/bid/820/info The Mdaemon mail server for Windows includes a small web server for web-based remote administration. This webserver is vulnerable due to an unchecked buffer that handles incoming GET requests. An abnormally large URL sent to the WebConfig service...