3 matches found
NetWin SurgeMail Webmail Server page Parameter Format String - Ver2 (CVE-2008-1055)
A format string vulnerability has been reported in NetWin SurgeMail and WebMail. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
CVE-2008-1055
Format string vulnerability in webmail.exe in NetWin SurgeMail 38k4 and earlier and beta 39a, and WebMail 3.1s and earlier, allows remote attackers to cause a denial of service daemon crash and possibly execute arbitrary code via format string specifiers in the page parameter...
CVE-2008-1055
CVE-2008-1055 describes a format string vulnerability in NetWin SurgeMail’s webmail.exe components (versions 38k4 and earlier; beta 39a) and WebMail 3.1s and earlier. The flaw, triggered via the page parameter, can cause a denial of service (daemon crash) and may allow arbitrary code execution by...