Mailenable Professional@1.5 Security Vulnerabilities and Issues — Mailenable Professional@1.5 CVE List

Lucene search

MailenableMailenable Professional1.5

12 matches found

CVE•added 2005/07/12 4:0 a.m.•52 views

CVE-2005-2223

Unknown vulnerability in the SMTP service in MailEnable Standard before 1.9 and Professional before 1.6 allows remote attackers to cause a denial of service (crash) during authentication.

5CVSS6.6AI score0.1057EPSS

CVE•added 2005/07/10 4:0 a.m.•48 views

CVE-2004-2194

MailEnable Professional Edition before 1.53 and Enterprise Edition before 1.02 allows remote attackers to cause a denial of service (crash) via malformed (1) SMTP or (2) IMAP commands.

5CVSS6.7AI score0.0197EPSS

CVE•added 2006/04/15 10:2 a.m.•48 views

CVE-2006-1792

Unspecified vulnerability in the POP service in MailEnable Standard Edition before 1.94, Professional Edition before 1.74, and Enterprise Edition before 1.22 has unknown attack vectors and impact related to "authentication exploits". NOTE: this is a different set of affected versions, and probably ...

10CVSS6.2AI score0.02884EPSS

CVE•added 2005/05/02 4:0 a.m.•45 views

CVE-2005-1013

The SMTP service in MailEnable Enterprise 1.04 and earlier and Professional 1.54 and earlier allows remote attackers to cause a denial of service (server crash) via an EHLO command with a Unicode string.

5CVSS6.8AI score0.27159EPSS

CVE•added 2005/05/02 4:0 a.m.•45 views

CVE-2005-1014

Buffer overflow in the IMAP service for MailEnable Enterprise 1.04 and earlier and Professional 1.54 allows remote attackers to execute arbitrary code via a long AUTHENTICATE command.

7.5CVSS8AI score0.172EPSS

CVE•added 2007/02/15 11:28 p.m.•44 views

CVE-2007-0652

Cross-site request forgery (CSRF) vulnerability in MailEnable Professional before 2.37 allows remote attackers to modify arbitrary configurations and perform unauthorized actions as arbitrary users via a link or IMG tag.

5.1CVSS6.9AI score0.02105EPSS

CVE•added 2005/05/31 4:0 a.m.•43 views

CVE-2005-1781

Unknown vulnerability in SMTP authentication for MailEnable allows remote attackers to cause a denial of service (crash).

5CVSS6.7AI score0.03269EPSS

CVE•added 2006/02/01 10:2 p.m.•43 views

CVE-2006-0503

IMAP service in MailEnable Professional Edition before 1.72 allows remote attackers to cause a denial of service (service crash) via unspecified vectors involving the EXAMINE command.

5CVSS6.6AI score0.0417EPSS

CVE•added 2006/03/21 2:6 a.m.•41 views

CVE-2006-1338

Webmail in MailEnable Professional Edition before 1.73 and Enterprise Edition before 1.21 allows remote attackers to cause a denial of service (CPU consumption) via unspecified vectors involving "incorrectly encoded quoted-printable emails".

5CVSS6.6AI score0.03697EPSS

CVE•added 2006/06/28 10:5 p.m.•41 views

CVE-2006-3277

The SMTP service of MailEnable Standard 1.92 and earlier, Professional 2.0 and earlier, and Enterprise 2.0 and earlier before the MESMTPC hotfix, allows remote attackers to cause a denial of service (application crash) via a HELO command with a null byte in the argument, possibly triggering a lengt...

5CVSS6.9AI score0.17591EPSS

CVE•added 2005/07/12 4:0 a.m.•35 views

CVE-2005-2222

Unknown vulnerability in the HTTPMail service in MailEnable Professional before 1.6 has unknown impact and attack vectors.

10CVSS7AI score0.00469EPSS

CVE•added 2007/02/15 11:28 p.m.•35 views

CVE-2007-0651

Multiple cross-site scripting (XSS) vulnerabilities in MailEnable Professional before 2.37 allow remote attackers to inject arbitrary Javascript script via (1) e-mail messages and (2) the ID parameter to (a) right.asp, (b) Forms/MAI/list.asp, and (c) Forms/VCF/list.asp in mewebmail/base/default/lan...

4.3CVSS5.9AI score0.02758EPSS