Lucene search
K

62 matches found

Vulnrichment
Vulnrichment
added 2025/07/21 12:0 a.m.4 views

CVE-2025-52372

An issue in hMailServer v.5.8.6 allows a local attacker to obtain sensitive information via the hmailserver/installation/hMailServerInnoExtension.iss and hMailServer.ini components...

6.4AI score0.00226EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/07/21 12:0 a.m.6 views

PT-2025-30302 · Unknown · Hmailserver

Name of the Vulnerable Software and Affected Versions: hMailServer versions 5.6.9-beta through 5.8.6 Description: The software uses a hardcoded cryptographic key in the Encryption.cs file. This allows an attacker to decrypt passwords for other servers stored in the hMailAdmin.exe.config file,...

4.6CVSS6.2AI score0.00191EPSS
Exploits1References5
Positive Technologies
Positive Technologies
added 2025/07/21 12:0 a.m.5 views

PT-2025-30300 · Unknown · Hmailserver

Name of the Vulnerable Software and Affected Versions: hMailServer version 5.8.6 Description: An issue allows a local attacker to obtain sensitive information via the hmailserver/installation/hMailServerInnoExtension.iss and hMailServer.ini components. Recommendations: At the moment, there is no...

5.1CVSS5.7AI score0.00226EPSS
Exploits1References7
CVE
CVE
added 2025/07/21 12:0 a.m.21 views

CVE-2025-52374

The CVE-2025-52374 entry concerns hMailServer 5.8.6 and 5.6.9-beta. A hardcoded cryptographic key in Encryption.cs is cited as the root cause, enabling an attacker to decrypt passwords stored in hMailAdmin.exe.config and potentially access other hMailServer admin consoles that use configured conn...

4.6CVSS6.6AI score0.00191EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/21 12:0 a.m.4 views

CVE-2025-52373

Use of hardcoded cryptographic key in BlowFish.cpp in hMailServer 5.8.6 and 5.6.9-beta allows attacker to decrypt passwords used in database connections from hMailServer.ini config file...

7.1AI score0.00294EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2025/07/21 12:0 a.m.5 views

CVE-2025-52374

Use of hardcoded cryptographic key in Encryption.cs in hMailServer 5.8.6 and 5.6.9-beta allows attacker to decrypt passwords to other servers from hMailAdmin.exe.config file to access other hMailServer admin consoles with configured connections...

7.2AI score0.00191EPSS
Exploits1References3
CVE
CVE
added 2025/07/21 12:0 a.m.29 views

CVE-2025-52372

CVE-2025-52372 affects hMailServer v5.8.6. The issue allows a local attacker to obtain sensitive information via the files hmailserver/installation/hMailServerInnoExtension.iss and hMailServer.ini. The provided documents do not specify the root cause beyond the files involved, nor a remediation o...

5.1CVSS5.8AI score0.00226EPSS
Exploits1References3Affected Software1
CNNVD
CNNVD
added 2025/07/21 12:0 a.m.5 views

hMailServer 安全漏洞

hMailServer is an open source mail server from hMailServer Open Source. A security vulnerability exists in hMailServer version 5.8.6 and 5.6.9-beta, which stems from the use of a hard-coded key in Encryption.cs, which may lead to decryption of other server passwords...

4.6CVSS6.7AI score0.00191EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/07/21 12:0 a.m.3 views

hMailServer 安全漏洞

hMailServer is an open source mail server from hMailServer Open Source. A security vulnerability exists in hMailServer version 5.8.6 and 5.6.9-beta, which stems from the use of hard-coded keys in BlowFish.cpp, which could lead to the decryption of database connection passwords...

4.6CVSS6.7AI score0.00294EPSS
Exploits1References5
CNNVD
CNNVD
added 2025/07/21 12:0 a.m.6 views

hMailServer 安全漏洞

hMailServer is an open source mail server from hMailServer Open Source. A security vulnerability exists in hMailServer version v5.8.6, which stems from improper handling of the hmailserver/installation/hMailServerInnoExtension.iss and hMailServer.ini components, which could lead to the disclosure...

5.1CVSS6.4AI score0.00226EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2025/05/22 6:15 a.m.9 views

CVE-2013-5571

HMailServer 5.3.x and prior: Memory Corruption which could cause DOS...

5.9CVSS7AI score0.00886EPSS
Exploits1References1
CNVD
CNVD
added 2020/01/15 12:0 a.m.5 views

HMailServer Buffer Overflow Vulnerability

HMailServer is an open source e-mail server based on the Windows platform . A security vulnerability exists in HMailServer 5.3.x and earlier versions. An attacker can exploit the vulnerability to cause a denial of service...

5.9CVSS6.7AI score0.00886EPSS
Exploits1References1
NVD
NVD
added 2020/01/07 2:15 p.m.17 views

CVE-2013-5571

HMailServer 5.3.x and prior: Memory Corruption which could cause DOS...

5.9CVSS5.8AI score0.00886EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2020/01/07 2:15 p.m.2 views

CVE-2013-5571

HMailServer 5.3.x and prior: Memory Corruption which could cause DOS...

5.9CVSS5.4AI score0.00886EPSS
Exploits1References2
Prion
Prion
added 2020/01/07 2:15 p.m.17 views

Memory corruption

HMailServer 5.3.x and prior: Memory Corruption which could cause DOS...

2.6CVSS7.2AI score0.00886EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/01/07 1:13 p.m.18 views

CVE-2013-5571

HMailServer 5.3.x and prior: Memory Corruption which could cause DOS...

5.8AI score0.00886EPSS
Exploits1References1
CVE
CVE
added 2020/01/07 1:13 p.m.52 views

CVE-2013-5571

HMailServer 5.3.x and earlier is affected by CVE-2013-5571 due to a memory corruption issue that could lead to a denial of service. The sources describe the vulnerability as memory corruption with possible DOS impact but do not specify the root cause, affected components, exact versions beyond th...

5.9CVSS5.8AI score0.00886EPSS
Exploits1References1Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.10 views

hMailServer 4.4.1 IMAP Command Remote Denial of Service Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/30663/info hMailServer is prone to a remote denial-of-service vulnerability caused by large numbers of certain IMAP commands. Exploiting this issue will cause the server to crash and deny access to legitimate users...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.32 views

hMailServer 5.3.3 IMAP Remote Crash PoC

No description provided by source. Exploit Title: hMailServer 5.3.3 IMAP Remote Crash PoC Date: 10/27/2012 Vendor Homepage: http://hmailserver.com Software Link: http://www.hmailserver.com/index.php?page=backgrounddownloadfile&downloadid=207 Version: hMailServer 5.3.3 - Build 1879 Tested on: -...

7.1AI score
Exploits0
OpenVAS
OpenVAS
added 2012/10/29 12:0 a.m.21 views

hMailServer IMAP Remote DoS Vulnerability

hMailServer is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.2AI score
Exploits0References4
Rows per page
Query Builder