Netmail Security Vulnerabilities and Issues — Netmail CVE List

Lucene search

NovellNetmail

7 matches found

CVE•added 2005/11/18 10:3 p.m.•47 views

CVE-2005-3314

Stack-based buffer overflow in the IMAP daemon in Novell Netmail 3.5.2 allows remote attackers to execute arbitrary code via "long verb arguments."

7.5CVSS7.9AI score0.83419EPSS

CVE•added 2005/06/15 4:0 a.m.•43 views

CVE-2005-1758

Buffer overflow in the IMAP command continuation function in Novell NetMail 3.52 before 3.52C may allow remote attackers to execute arbitrary code.

7.5CVSS7.8AI score0.24528EPSS

CVE•added 2005/06/15 4:0 a.m.•42 views

CVE-2005-1756

Cross-site scripting (XSS) vulnerability in the ModWeb agent for Novell NetMail 3.52 before 3.52C allows remote attackers to inject arbitrary web script or HTML via calendar display fields.

4.3CVSS6AI score0.01166EPSS

CVE•added 2005/06/15 4:0 a.m.•41 views

CVE-2005-1757

Buffer overflow in the Modweb agent for Novell NetMail 3.52 before 3.52C, when renaming folders, may allow attackers to execute arbitrary code.

7.5CVSS7.9AI score0.02041EPSS

CVE•added 2005/07/09 4:0 a.m.•41 views

CVE-2005-2176

Novell NetMail automatically processes HTML in an attachment without prompting the user to save or open it, which makes it easier for remote attackers to conduct web-based attacks and steal cookies.

6.4CVSS6.9AI score0.04325EPSS

CVE•added 2005/10/20 10:2 a.m.•39 views

CVE-2005-2469

Stack-based buffer overflow in the NMAP Agent for Novell NetMail 3.52C and possibly earlier versions allows local users to execute arbitrary code via a long user name in the USER command.

4.6CVSS8.1AI score0.00141EPSS

CVE•added 2005/08/05 4:0 a.m.•34 views

CVE-2004-2298

Novell Internet Messaging System (NIMS) 2.6 and 3.0, and NetMail 3.1 and 3.5, is installed with a default NMAP authentication credential, which allows remote attackers to read and write mail store data if the administrator does not change the credential by using the NMAP Credential Generator.

6.4CVSS7.2AI score0.00378EPSS