Lucene search
K

290 matches found

Cvelist
Cvelist
added 2005/11/28 11:0 p.m.22 views

CVE-2004-2585

Cross-site scripting XSS vulnerability in frmCompose.aspx in SmarterTools SmarterMail 1.6.1511 and 1.6.1529 allows remote attackers to inject arbitrary web script or HTML via Javascript to the "check spelling" feature in the compose area...

5.7AI score0.01427EPSS
Exploits1References7
CVE
CVE
added 2005/11/28 11:0 p.m.49 views

CVE-2004-2587

Vulnerability summary for CVE-2004-2587: SmarterTools SmarterMail versions 1.6.1511 and 1.6.1529 are affected. The issue lies in login.aspx, where a long txtusername parameter can be used by a remote attacker to cause a denial of service (potentially via a buffer overflow).Impact is limited to av...

5CVSS7.3AI score0.01887EPSS
Exploits1References4Affected Software1
securityvulns
securityvulns
added 2005/02/02 12:0 a.m.59 views

[SA14080] SmarterMail Attachment Upload Vulnerability

TITLE: SmarterMail Attachment Upload Vulnerability SECUNIA ADVISORY ID: SA14080 VERIFY ADVISORY: http://secunia.com/advisories/14080/ CRITICAL: Less critical IMPACT: Cross Site Scripting WHERE: From remote SOFTWARE: SmarterMail http://secunia.com/product/3154/ DESCRIPTION: Soroush Dalili has...

0.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/01/31 12:0 a.m.9 views

SmarterMail Attachment Upload XSS

Binary data 2579.prm...

7.3AI score
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2005/01/31 12:0 a.m.30 views

SmarterTools SmarterMail Attachment Upload XSS

There are flaws in the remote SmarterMail, a web mail interface. This version of SmarterMail is affected by a cross-site scripting issue. An attacker, exploiting this flaw, would be able to steal user credentials. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include 'compat.inc' ;...

5.4AI score
Exploits0References1
NVD
NVD
added 2004/12/31 5:0 a.m.31 views

CVE-2004-2583

SMTP service in SmarterTools SmarterMail 1.6.1511 and 1.6.1529 allows remote attackers to cause a denial of service CPU consumption via a large number of simultaneous open connections to TCP port 25...

7.8CVSS6.6AI score0.01845EPSS
Exploits0References4
NVD
NVD
added 2004/12/31 5:0 a.m.14 views

CVE-2004-2586

Directory traversal vulnerability in frmGetAttachment.aspx in SmarterTools SmarterMail 1.6.1511 and 1.6.1529 allows remote attackers to read arbitrary files via the filename parameter...

5CVSS6.7AI score0.01932EPSS
Exploits1References5
NVD
NVD
added 2004/12/31 5:0 a.m.19 views

CVE-2004-2584

frmAddfolder.aspx in SmarterTools SmarterMail 1.6.1511 and 1.6.1529 allows remote authenticated users to create a folder that SmarterMail cannot delete or rename via a folder name with a null byte "%00". NOTE: it is not clear whether this issue poses a vulnerability...

4CVSS6.2AI score0.01089EPSS
Exploits0References3
NVD
NVD
added 2004/12/31 5:0 a.m.14 views

CVE-2004-2585

Cross-site scripting XSS vulnerability in frmCompose.aspx in SmarterTools SmarterMail 1.6.1511 and 1.6.1529 allows remote attackers to inject arbitrary web script or HTML via Javascript to the "check spelling" feature in the compose area...

4.3CVSS5.7AI score0.01427EPSS
Exploits1References7
NVD
NVD
added 2004/12/31 5:0 a.m.14 views

CVE-2004-2587

login.aspx in SmarterTools SmarterMail 1.6.1511 and 1.6.1529 allows remote attackers to cause a denial of service via a long txtusername parameter, possibly due to a buffer overflow...

5CVSS6.9AI score0.01887EPSS
Exploits1References4
Rows per page
Query Builder