Metamail Security Vulnerabilities and Issues — Metamail CVE List

Lucene search

Metamail CorporationMetamail

7 matches found

CVE•added 2004/03/03 5:0 a.m.•56 views

CVE-2004-0104

Multiple format string vulnerabilities in Metamail 2.7 and earlier allow remote attackers to execute arbitrary code.

7.5CVSS7.2AI score0.49809EPSS

CVE•added 2004/03/03 5:0 a.m.•49 views

CVE-2004-0105

Multiple buffer overflows in Metamail 2.7 and earlier allow remote attackers to execute arbitrary code.

7.5CVSS7.2AI score0.15283EPSS

CVE•added 2006/02/15 11:6 a.m.•48 views

CVE-2006-0709

Buffer overflow in Metamail 2.7-50 allows remote attackers to cause a denial of service (application crash) or possibly execute arbitrary code via e-mail messages with a long boundary attribute, a different vulnerability than CVE-2004-0105.

7.5CVSS7.8AI score0.15283EPSS

CVE•added 2001/09/12 4:0 a.m.•38 views

CVE-1999-1261

Buffer overflow in Rainbow Six Multiplayer allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long nickname (nick) command.

5CVSS8.6AI score0.00603EPSS

CVE•added 2003/08/15 4:0 a.m.•33 views

CVE-1999-1263

Metamail before 2.7-7.2 allows remote attackers to overwrite arbitrary files via an e-mail message containing a uuencoded attachment that specifies the full pathname for the file to be modified, which is processed by uuencode in Metamail scripts such as sun-audio-file.

2.6CVSS7.2AI score0.00316EPSS

CVE•added 2005/05/10 4:0 a.m.•33 views

CVE-2004-1808

Extcompose in metamail does not verify the output file before writing to it, which allows local users to overwrite arbitrary files via a symlink attack.

2.1CVSS6.3AI score0.00068EPSS

CVE•added 2001/09/12 4:0 a.m.•32 views

CVE-1999-1266

rsh daemon (rshd) generates different error messages when a valid username is provided versus an invalid name, which allows remote attackers to determine valid users on the system.

5CVSS7.5AI score0.00814EPSS