Pegasus Mail Security Vulnerabilities and Issues — Pegasus Mail CVE List

Lucene search

David HarrisPegasus Mail

6 matches found

CVE•added 2000/12/19 5:0 a.m.•46 views

CVE-2000-0931

Buffer overflow in Pegasus Mail 3.11 allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long email message containing binary data.

7.5CVSS8.2AI score0.01226EPSS

CVE•added 2001/09/12 4:0 a.m.•37 views

CVE-1999-1366

Pegasus e-mail client 3.0 and earlier uses weak encryption to store POP3 passwords in the pmail.ini file, which allows local users to easily decrypt the passwords and read e-mail.

3.6CVSS6.6AI score0.00063EPSS

CVE•added 2005/12/21 2:3 a.m.•34 views

CVE-2005-4445

Off-by-one error in Pegasus Mail 4.21a through 4.21c and 4.30PB1 allows remote attackers to execute arbitrary code via a long email message header, which triggers a one-byte buffer overflow.

5.1CVSS8.2AI score0.04821EPSS

CVE•added 2001/01/22 5:0 a.m.•33 views

CVE-2000-0930

Pegasus Mail 3.12 allows remote attackers to read arbitrary files via an embedded URL that calls the mailto: protocol with a -F switch.

5CVSS7.1AI score0.05103EPSS

CVE•added 2005/12/21 2:3 a.m.•32 views

CVE-2005-4444

Stack-based buffer overflow in the trace message functionality in Pegasus Mail 4.21a through 4.21c and 4.30PB1 allow remote attackers to execute arbitrary code via a long POP3 reply.

5.1CVSS8.4AI score0.06287EPSS

CVE•added 2002/10/04 4:0 a.m.•30 views

CVE-2002-1075

Buffer overflow in Pegasus mail client 4.01 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via long (1) To or (2) From headers.

7.5CVSS8.4AI score0.07307EPSS