CVE-2005-1976

Novell NetMail 3.5.2a, 3.5.2b, and 3.5.2c running on Linux reportedly set the owner and group of certain files to 500, which could allow users or groups with that ID to modify those files and potentially execute arbitrary code or cause a denial of service. The Red Hat advisory confirms this behav...

CVE-2005-3314

The provided connected sources confirm CVE-2005-3314 as a stack-based buffer overflow in the NetMail IMAP service (Novell NetMail 3.5.2/3.52d) triggered by long verb arguments. Exploitation allows an authenticated remote attacker to execute arbitrary code with the IMAP server process privileges, ...

CVE-2006-6762

The CVE-2006-6762 entry affects Novell NetMail’s IMAP server (IMAPD) prior to 3.52e FTF2. A buffer overflow may occur when processing parameters to the APPEND command, enabling a remote authenticated attacker to cause a denial-of-service. Remediation: apply the vendor update per Novell document 3...

CVE-2005-1758

Novell NetMail IMAPD is affected by a heap overflow in the IMAP command continuation handling in NetMail versions before 3.52C, enabling unauthenticated remote code execution with the privileges of the NetMail service. Exploitation details are described in iDEFENSE advisory and the Nessus/SEC ref...

CVE-2005-1757

Technical details about CVE-2005-1757 are not publicly provided in the supplied documents; no concrete affected product/version or exploit specifics are listed beyond the general description. Monitor for updates.

CVE-2006-6425

CVE-2006-6425 describes a stack-based buffer overflow in the Novell NetMail IMAP daemon (IMAPD) when processing the APPEND command, affecting NetMail versions prior to 3.52e FTF2. An authenticated remote attacker who can access IMAP services could trigger arbitrary code execution in the IMAP serv...

CVE-2005-2469

CVE-2005-2469: A stack-based buffer overflow affects the NMAP Agent for Novell NetMail, version 3.52C and possibly earlier. The vulnerability allows local users to execute arbitrary code by sending a long username in the USER command. The available documents confirm the vulnerability and affected...

CVE-2005-1756

Technical details about CVE-2005-1756 are not publicly provided in the supplied documents. Monitor for updates from the cited advisories and CVE records.

CVE-2005-2176

Novell NetMail is vulnerable to an issue where HTML in an attachment is processed automatically without prompting the user to save or open it, enabling potential web-based attacks and cookie theft. The provided sources (NVD/CVE record) confirm the description but do not specify affected versions,...

CVE-2007-6302

The vulnerability CVE-2007-6302 affects Novell NetMail 3.5.2 (NetMail with AntiVirus agent) via multiple heap-based overflows in avirus.exe. The root cause is that the avirus.exe service reads a user‑supplied ASCII integer as an argument to a memory allocation, then adds to that value without pro...

CVE-2002-0997

CVE-2002-0997 affects Novell NetMail (NIMS) IMAP Agent (imapd) 3.0.3 and earlier. The issue is a buffer overflow that allows remote attackers to cause a denial of service. The available records describe the vulnerable component and impact but do not specify a patch version or remediation steps. N...

CVE-2002-0996

CVE-2002-0996 concerns multiple buffer overflows in Novell NetMail (NIMS) 3.0.3 and earlier, allowing remote attackers to cause a denial of service and potentially execute arbitrary code via the WebAdmin or ModWeb interfaces. Affected product: NetMail (NIMS) 3.0.3 before 3.0.3C. Underlying issue:...

CVE-2006-6761

CVE-2006-6761 describes a stack-based buffer overflow in the IMAPD of Novell NetMail prior to 3.52e FTF2 . An attacker with authenticated remote access can trigger the overflow by sending a long argument to the IMAP SUBSCRIBE command, potentially allowing arbitrary code execution on affected syst...

CVE-2007-2616

CVE-2007-2616: A stack-based buffer overflow in the SSL version of the NMDMC.EXE service of Novell NetMail 3.52e FTF2 (likely earlier) allows remote attackers to execute arbitrary code via a crafted request. The affected component is the SSL-enabled NMDMC.EXE service; root cause is a stack overfl...

CVE-2007-1350

CVE-2007-1350 describes a stack-based buffer overflow in NetMail WebAdmin (webadmin.exe) that, during HTTP Basic authentication, can be triggered by a long username to allow remote code execution. Affected product: Novell NetMail 3.5.2 (WebAdmin on port 89/TCP). The vulnerability arises from a vu...

CVE-2004-2298

Affected products: Novell Internet Messaging System (NIMS) 2.6/3.0 and NetMail 3.1/3.5. Vulnerability: Installed with a default NMAP authentication credential, enabling unauthorized access. Impact: Remote attackers can read and write mail store data if the administrator does not change the creden...

CVE-2006-6424

The CVE-2006-6424 vulnerability affects Novell NetMail (NMAP STOR and IMAP handling). Affected: NetMail servers prior to 3.52e FTF2; NMAP STOR buffer overflow can yield remote code execution, and IMAP command continuation handling can cause a heap overflow. Confirmed exploitation is possible via ...