21 matches found
EUVD-2006-0456
Malware in sbrugna...
EUVD-2008-2046
Malware in sbrugna...
EUVD-2006-0455
Malware in sbrugna...
EUVD-2006-0454
Malware in sbrugna...
Design/Logic Flaw
The POP3 server EPSTPOP3S.EXE 4.22 in E-Post Mail Server 4.10 allows remote attackers to obtain sensitive information via multiple crafted APOP commands for a known POP3 account, which displays the password in a POP3 error message...
CVE-2008-2049
The POP3 server EPSTPOP3S.EXE 4.22 in E-Post Mail Server 4.10 allows remote attackers to obtain sensitive information via multiple crafted APOP commands for a known POP3 account, which displays the password in a POP3 error message...
CVE-2008-2049
The POP3 server EPSTPOP3S.EXE 4.22 in E-Post Mail Server 4.10 allows remote attackers to obtain sensitive information via multiple crafted APOP commands for a known POP3 account, which displays the password in a POP3 error message...
CVE-2008-2049
The CVE-2008-2049 entry affects E-Post Mail Server 4.10, specifically the POP3 server EPSTPOP3S.EXE v4.22. The vulnerability arises from handling of crafted APOP commands for a known POP3 account, which can disclose the user password in a POP3 error message. This is a remote-authenticated exposur...
Directory traversal
Multiple directory traversal vulnerabilities in 1 EPSTIMAP4S.EXE and 2 SPA-IMAP4S.EXE in the IMAP service in E-Post Mail 4.05 and SPA-PRO Mail 4.05 allow remote attackers to a list arbitrary directories or cause a denial of service via the LIST command; or create arbitrary files via the b APPEND,...
CVE-2006-0447
Multiple buffer overflows in E-Post Mail Server 4.10 and SPA-PRO Mail @Solomon 4.00 allow remote attackers to execute arbitrary code via a long username to the 1 AUTH PLAIN or 2 AUTH LOGIN SMTP commands, which is not properly handled by a EPSTRS.EXE or b SPA-RS.EXE; 3 a long username in the APOP...
CVE-2006-0448
Multiple directory traversal vulnerabilities in 1 EPSTIMAP4S.EXE and 2 SPA-IMAP4S.EXE in the IMAP service in E-Post Mail 4.05 and SPA-PRO Mail 4.05 allow remote attackers to a list arbitrary directories or cause a denial of service via the LIST command; or create arbitrary files via the b APPEND,...
CVE-2006-0449
Early termination vulnerability in the IMAP service in E-Post Mail 4.05 and SPA-PRO Mail 4.05 allows remote attackers to cause a denial of service infinite loop by sending an APPEND command and disconnecting before the expected amount of data is sent...
Buffer overflow
Multiple buffer overflows in E-Post Mail Server 4.10 and SPA-PRO Mail @Solomon 4.00 allow remote attackers to execute arbitrary code via a long username to the 1 AUTH PLAIN or 2 AUTH LOGIN SMTP commands, which is not properly handled by a EPSTRS.EXE or b SPA-RS.EXE; 3 a long username in the APOP...
CVE-2006-0447
Multiple buffer overflows in E-Post Mail Server 4.10 and SPA-PRO Mail @Solomon 4.00 allow remote attackers to execute arbitrary code via a long username to the 1 AUTH PLAIN or 2 AUTH LOGIN SMTP commands, which is not properly handled by a EPSTRS.EXE or b SPA-RS.EXE; 3 a long username in the APOP...
CVE-2006-0449
Early termination vulnerability in the IMAP service in E-Post Mail 4.05 and SPA-PRO Mail 4.05 allows remote attackers to cause a denial of service infinite loop by sending an APPEND command and disconnecting before the expected amount of data is sent...
CVE-2006-0448
Multiple directory traversal vulnerabilities in 1 EPSTIMAP4S.EXE and 2 SPA-IMAP4S.EXE in the IMAP service in E-Post Mail 4.05 and SPA-PRO Mail 4.05 allow remote attackers to a list arbitrary directories or cause a denial of service via the LIST command; or create arbitrary files via the b APPEND,...
CVE-2006-0447
CVE-2006-0447 involves multiple buffer overflows in E-Post Mail Server 4.10 and SPA-PRO Mail @Solomon 4.00. The vulnerability allows remote code execution when an attacker supplies a long username in several protocols. Specifically, issues arise in the AUTH PLAIN and AUTH LOGIN SMTP commands (han...
CVE-2006-0448
The CVE-2006-0448 entry describes multiple directory traversal vulnerabilities in the IMAP service of E-Post Mail 4.05 and SPA-PRO Mail 4.05, affecting components EPSTIMAP4S.EXE and SPA-IMAP4S.EXE. Attackers could remotely list arbitrary directories or cause a denial of service via the LIST comma...
CVE-2006-0449
The CVE-2006-0449 entry describes an early termination vulnerability in the IMAP service of E-Post Mail 4.05 and SPA-PRO Mail 4.05. The underlying issue allows remote attackers to trigger a denial of service (infinite loop) by sending an APPEND command and disconnecting before the expected amount...
[SA18480] E-Post Mail Server Products Multiple Vulnerabilities
TITLE: E-Post Mail Server Products Multiple Vulnerabilities SECUNIA ADVISORY ID: SA18480 VERIFY ADVISORY: http://secunia.com/advisories/18480/ CRITICAL: Highly critical IMPACT: Security Bypass, Exposure of system information, DoS, System access WHERE: From remote SOFTWARE: E-Post Mail Server 4.x...