Netmail Security Vulnerabilities and Issues — Netmail CVE List

Lucene search

NovellNetmail

5 matches found

CVE•added 2005/07/09 4:0 a.m.•41 views

CVE-2005-2176

Novell NetMail automatically processes HTML in an attachment without prompting the user to save or open it, which makes it easier for remote attackers to conduct web-based attacks and steal cookies.

6.4CVSS6.9AI score0.04325EPSS

CVE•added 2007/12/10 7:46 p.m.•40 views

CVE-2007-6302

Multiple heap-based buffer overflows in avirus.exe in Novell NetMail 3.5.2 before Messaging Architects M+NetMail 3.52f (aka 3.5.2F) allows remote attackers to execute arbitrary code via unspecified ASCII integers used as memory allocation arguments, aka "ZDI-CAN-162."

6.8CVSS7.9AI score0.17335EPSS

CVE•added 2006/12/27 2:28 a.m.•36 views

CVE-2006-6761

Stack-based buffer overflow in the IMAP daemon (IMAPD) in Novell NetMail before 3.52e FTF2 allows remote authenticated users to execute arbitrary code via a long argument to the SUBSCRIBE command.

6.5CVSS7.7AI score0.45703EPSS

CVE•added 2007/03/08 10:19 p.m.•35 views

CVE-2007-1350

Stack-based buffer overflow in webadmin.exe in Novell NetMail 3.5.2 allows remote attackers to execute arbitrary code via a long username during HTTP Basic authentication.

6.8CVSS7.8AI score0.65623EPSS

CVE•added 2005/08/05 4:0 a.m.•34 views

CVE-2004-2298

Novell Internet Messaging System (NIMS) 2.6 and 3.0, and NetMail 3.1 and 3.5, is installed with a default NMAP authentication credential, which allows remote attackers to read and write mail store data if the administrator does not change the credential by using the NMAP Credential Generator.

6.4CVSS7.2AI score0.00378EPSS