Kerio Mailserver Security Vulnerabilities and Issues — Kerio Mailserver CVE List

Lucene search

KerioKerio Mailserver

5 matches found

CVE•added 2008/12/30 8:30 p.m.•58 views

CVE-2008-5769

Multiple cross-site scripting (XSS) vulnerabilities in Kerio MailServer before 6.6.2 allow remote attackers to inject arbitrary web script or HTML via the (1) folder parameter to mailCompose.php or the (2) daytime parameter to calendarEdit.php. NOTE: some of these details are obtained from third pa...

4.3CVSS5.7AI score0.00516EPSS

CVE•added 2008/02/21 12:44 a.m.•40 views

CVE-2008-0860

Unspecified vulnerability in the AVG plugin in Kerio MailServer before 6.5.0 has unspecified impact via unknown remote attack vectors related to null DACLs.

10CVSS6.6AI score0.00416EPSS

CVE•added 2008/02/21 12:44 a.m.•39 views

CVE-2008-0858

Buffer overflow in the Visnetic anti-virus plugin in Kerio MailServer before 6.5.0 might allow remote attackers to execute arbitrary code via unspecified vectors.

7.5CVSS8AI score0.03105EPSS

CVE•added 2008/12/30 7:30 p.m.•37 views

CVE-2008-5760

Cross-site scripting (XSS) vulnerability in error413.php in Kerio MailServer before 6.6.2 allows remote attackers to inject arbitrary web script or HTML via the sent parameter. NOTE: some of these details are obtained from third party information.

4.3CVSS5.6AI score0.00516EPSS

CVE•added 2008/02/21 12:44 a.m.•31 views

CVE-2008-0859

Unspecified vulnerability in Kerio MailServer before 6.5.0 allows remote attackers to cause a denial of service (crash) via unspecified vectors related to decoding of uuencoded input, which triggers memory corruption.

5CVSS6.6AI score0.0073EPSS