62 matches found
CVE-2025-52372
An issue in hMailServer v.5.8.6 allows a local attacker to obtain sensitive information via the hmailserver/installation/hMailServerInnoExtension.iss and hMailServer.ini components...
PT-2025-30302 · Unknown · Hmailserver
Name of the Vulnerable Software and Affected Versions: hMailServer versions 5.6.9-beta through 5.8.6 Description: The software uses a hardcoded cryptographic key in the Encryption.cs file. This allows an attacker to decrypt passwords for other servers stored in the hMailAdmin.exe.config file,...
PT-2025-30300 · Unknown · Hmailserver
Name of the Vulnerable Software and Affected Versions: hMailServer version 5.8.6 Description: An issue allows a local attacker to obtain sensitive information via the hmailserver/installation/hMailServerInnoExtension.iss and hMailServer.ini components. Recommendations: At the moment, there is no...
CVE-2025-52374
The CVE-2025-52374 entry concerns hMailServer 5.8.6 and 5.6.9-beta. A hardcoded cryptographic key in Encryption.cs is cited as the root cause, enabling an attacker to decrypt passwords stored in hMailAdmin.exe.config and potentially access other hMailServer admin consoles that use configured conn...
CVE-2025-52373
Use of hardcoded cryptographic key in BlowFish.cpp in hMailServer 5.8.6 and 5.6.9-beta allows attacker to decrypt passwords used in database connections from hMailServer.ini config file...
CVE-2025-52374
Use of hardcoded cryptographic key in Encryption.cs in hMailServer 5.8.6 and 5.6.9-beta allows attacker to decrypt passwords to other servers from hMailAdmin.exe.config file to access other hMailServer admin consoles with configured connections...
CVE-2025-52372
CVE-2025-52372 affects hMailServer v5.8.6. The issue allows a local attacker to obtain sensitive information via the files hmailserver/installation/hMailServerInnoExtension.iss and hMailServer.ini. The provided documents do not specify the root cause beyond the files involved, nor a remediation o...
hMailServer 安全漏洞
hMailServer is an open source mail server from hMailServer Open Source. A security vulnerability exists in hMailServer version 5.8.6 and 5.6.9-beta, which stems from the use of a hard-coded key in Encryption.cs, which may lead to decryption of other server passwords...
hMailServer 安全漏洞
hMailServer is an open source mail server from hMailServer Open Source. A security vulnerability exists in hMailServer version 5.8.6 and 5.6.9-beta, which stems from the use of hard-coded keys in BlowFish.cpp, which could lead to the decryption of database connection passwords...
hMailServer 安全漏洞
hMailServer is an open source mail server from hMailServer Open Source. A security vulnerability exists in hMailServer version v5.8.6, which stems from improper handling of the hmailserver/installation/hMailServerInnoExtension.iss and hMailServer.ini components, which could lead to the disclosure...
CVE-2013-5571
HMailServer 5.3.x and prior: Memory Corruption which could cause DOS...
HMailServer Buffer Overflow Vulnerability
HMailServer is an open source e-mail server based on the Windows platform . A security vulnerability exists in HMailServer 5.3.x and earlier versions. An attacker can exploit the vulnerability to cause a denial of service...
CVE-2013-5571
HMailServer 5.3.x and prior: Memory Corruption which could cause DOS...
CVE-2013-5571
HMailServer 5.3.x and prior: Memory Corruption which could cause DOS...
Memory corruption
HMailServer 5.3.x and prior: Memory Corruption which could cause DOS...
CVE-2013-5571
HMailServer 5.3.x and earlier is affected by CVE-2013-5571 due to a memory corruption issue that could lead to a denial of service. The sources describe the vulnerability as memory corruption with possible DOS impact but do not specify the root cause, affected components, exact versions beyond th...
CVE-2013-5571
HMailServer 5.3.x and prior: Memory Corruption which could cause DOS...
hMailServer 4.4.1 IMAP Command Remote Denial of Service Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/30663/info hMailServer is prone to a remote denial-of-service vulnerability caused by large numbers of certain IMAP commands. Exploiting this issue will cause the server to crash and deny access to legitimate users...
hMailServer 5.3.3 IMAP Remote Crash PoC
No description provided by source. Exploit Title: hMailServer 5.3.3 IMAP Remote Crash PoC Date: 10/27/2012 Vendor Homepage: http://hmailserver.com Software Link: http://www.hmailserver.com/index.php?page=backgrounddownloadfile&downloadid=207 Version: hMailServer 5.3.3 - Build 1879 Tested on: -...
hMailServer IMAP Remote DoS Vulnerability
hMailServer is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...