8 matches found
CVE-2000-0398
The CVE-2000-0398 issue affects Rockliffe MailSite Management Agent, due to a buffer overflow in wconsole.dll that can be triggered by a long query_string parameter in an HTTP GET request. This allows remote attackers to potentially execute arbitrary commands. Public documents identify the vulner...
CVE-2006-0130
CVE-2006-0130 affects Rockliffe MailSite’s Mail Management Agent (MAILMA) up to version 7.0.3.1 and earlier. The issue allows remote attackers to attempt authentication with an unlimited number of user names and passwords without triggering lockouts or rate-limiting, enabling brute-force-style ac...
CVE-2006-0342
CVE-2006-0342 affects RockLiffe MailSite HTTP Mail management agent (httpma) 7.0.3.1. The flaw allows remote attackers to trigger a denial of service (CPU consumption and crash) by sending a malformed query string containing special characters such as "|". Impact is a network-accessible DoS; no e...
CVE-2006-0129
CVE-2006-0129 affects Rockliffe MailSite prior to 7.0.3.1, specifically the Mail Management Agent (MAILMA) . The vulnerability arises because the server generates different responses based on whether a username is valid, allowing remote attackers to enumerate valid usernames via TCP port 106. The...
CVE-2006-0341
Rockliffe MailSite is affected by an XSS flaw in WCONSOLE.DLL affecting versions 5.x and 6.1.22 and earlier. The underlying issue allows an attacker to inject arbitrary web script or HTML via the query string, enabling remote exploitation as described in the CVE-2006-0341 entry. The provided conn...
CVE-2006-0790
Rockliffe MailSite 7.0 and earlier is affected. The vulnerability allows remote attackers to cause a denial of service by sending crafted LDAP packets to TCP port 389 (as demonstrated by the ProtoVer LDAP testsuite). The provided sources do not specify a remediation in the available documents. If...
CVE-2006-0127
Rockliffe MailSite IMAP (pre-6.1.22.1) suffers a directory-traversal in the RENAME command that enables remote authenticated users to rename other users’ folders. Affects the IMAP service; impact includes partial integrity (I: Partial, A: None, C: None) with no confidentiality/availability impact...
CVE-2006-0128
Rockliffe MailSite IMAP service (affected: versions before 6.1.22.1) is vulnerable to a buffer overflow. The vulnerability arises in the IMAP component, with a remote attacker able to trigger an overflow; the exact impact and attack vectors are not specified in the provided documents. No explicit...