15 matches found
EUVD-2006-0933
Malware in sbrugna...
CVE-2006-0928
The POP3 Server in ArGoSoft Mail Server Pro 1.8 allows remote attackers to obtain sensitive information via the DUMP command, which reveals the operating system, registered user, and registration code...
CVE-2006-0929
Directory traversal vulnerability in the IMAP server in ArGoSoft Mail Server Pro 1.8.8.1 allows remote authenticated users to create arbitrary folders via a .. dot dot in the RENAME command...
CVE-2006-0930
Directory traversal vulnerability in Webmail in ArGoSoft Mail Server Pro 1.8 allows remote authenticated users to read arbitrary files via a .. dot dot in the UIDL parameter...
CVE-2006-0929
Directory traversal vulnerability in the IMAP server in ArGoSoft Mail Server Pro 1.8.8.1 allows remote authenticated users to create arbitrary folders via a .. dot dot in the RENAME command...
CVE-2006-0928
The CVE-2006-0928 issue affects ArGoSoft Mail Server Pro 1.8, where the POP3 server exposes a _DUMP command that unauthenticated remote users can use to disclose sensitive information (OS, registered user, and registration code). The NVD entry records a base score of 5.0 (Medium) with network acc...
CVE-2006-0929
CVE-2006-0929 affects the IMAP server of ArGoSoft Mail Server Pro 1.8.8.1. The issue is a directory traversal in the IMAP RENAME command where mailbox names are not filtered for "..", allowing an authenticated remote attacker to create/move folders arbitrarily on the affected system. The connecte...
CVE-2006-0930
Summary: CVE-2006-0930 describes a directory traversal vulnerability in Webmail of ArGoSoft Mail Server Pro 1.8. Affected component: Webmail/UIDL handling. Root cause: improper handling of the UIDL parameter allowing directory traversal via “..” sequences, enabling a remote authenticated user to ...
Secunia Research: ArGoSoft Mail Server Pro viewheaders Script Insertion
====================================================================== Secunia Research 27/02/2006 - ArGoSoft Mail Server Pro viewheaders Script Insertion - ====================================================================== Table of Contents Affected...
ArGoSoft Mail Server Pro Webmail viewheaders Multiple Field XSS
The remote host is running ArGoSoft Mail Server Pro, a messaging system for Windows. According to its banner, the webmail server bundled with the version of ArGoSoft Mail Server Pro installed on the remote host fails to properly filter message headers before displaying them as part of a message t...
NSAG-200-24.02.2006.txt
Advisory: NSAG-¹200-24.02.2006 Research: NSA Group Russian company on Audit of safety & Network security Site of Research: http://www.nsag.ru or http://www.nsag.org Product: ArGoSoft Mail Server Pro 1.8 IMAP Site of manufacturer: www.argosoft.com The status: 19/11/2005 - Publication is postponed...
NSA Group Security Advisory NSAG-№198-23.02.2006 Vulnerability ArGoSoft Mail Server Pro
Advisory: NSAG-№201-24.02.2006 Research: NSA Group Russian company on Audit of safety & Network security Site of Research: http://www.nsag.ru or http://www.nsag.org Product: ArGoSoft Mail Server Pro 1.8 POP Site of manufacturer: www.argosoft.com The status: 19/11/2005 - Publication is postponed...
CVE-2005-1283
Summary : CVE-2005-1283 describes multiple directory traversal vulnerabilities in ArGoSoft Mail Server Pro 1.8.7.6. Remote authenticated users can read arbitrary files via the UIDL parameter to the msg script or copy/move the user’s .eml file to arbitrary locations via the delete script. This is ...
CVE-2005-1282
CVE-2005-1282 affects ArGoSoft Mail Server Pro 1.8.7.6, with multiple XSS vulnerabilities allowing remote injection via (1) IMG src, (2) webmail user settings, or (3) address book input. The connected sources confirm XSS exposure and affected component, but do not provide patch/version remediatio...
Advisory: ArGoSoft Mail Server Pro 1.8.1.7 DoS
Author: Stan Bubrouski Date: August 4, 2002 Product: ArGoSoft Mail Server Pro Versions affected: 1.8.17 current and previous Severity: A malicious user or users could mount a DoS using mail forwarding and automatic responses to render the adminstrative console unresponsive and raise CPU usage to...