Lucene search
+L
RockliffeMailsite

8 matches found

CVE
CVE
added 2000/07/12 4:0 a.m.50 views

CVE-2000-0398

The CVE-2000-0398 issue affects Rockliffe MailSite Management Agent, due to a buffer overflow in wconsole.dll that can be triggered by a long query_string parameter in an HTTP GET request. This allows remote attackers to potentially execute arbitrary commands. Public documents identify the vulner...

10CVSS7.8AI score0.03159EPSS
CVE
CVE
added 2006/01/09 11:0 a.m.50 views

CVE-2006-0130

CVE-2006-0130 affects Rockliffe MailSite’s Mail Management Agent (MAILMA) up to version 7.0.3.1 and earlier. The issue allows remote attackers to attempt authentication with an unlimited number of user names and passwords without triggering lockouts or rate-limiting, enabling brute-force-style ac...

7.5CVSS6.9AI score0.01395EPSS
CVE
CVE
added 2006/01/21 12:0 a.m.50 views

CVE-2006-0342

CVE-2006-0342 affects RockLiffe MailSite HTTP Mail management agent (httpma) 7.0.3.1. The flaw allows remote attackers to trigger a denial of service (CPU consumption and crash) by sending a malformed query string containing special characters such as "|". Impact is a network-accessible DoS; no e...

7.8CVSS6.7AI score0.02228EPSS
CVE
CVE
added 2006/01/09 11:0 a.m.48 views

CVE-2006-0129

CVE-2006-0129 affects Rockliffe MailSite prior to 7.0.3.1, specifically the Mail Management Agent (MAILMA) . The vulnerability arises because the server generates different responses based on whether a username is valid, allowing remote attackers to enumerate valid usernames via TCP port 106. The...

5CVSS6.7AI score0.01566EPSS
CVE
CVE
added 2006/01/21 12:0 a.m.46 views

CVE-2006-0341

Rockliffe MailSite is affected by an XSS flaw in WCONSOLE.DLL affecting versions 5.x and 6.1.22 and earlier. The underlying issue allows an attacker to inject arbitrary web script or HTML via the query string, enabling remote exploitation as described in the CVE-2006-0341 entry. The provided conn...

4.3CVSS5.7AI score0.01965EPSS
CVE
CVE
added 2006/02/19 9:0 p.m.46 views

CVE-2006-0790

Rockliffe MailSite 7.0 and earlier is affected. The vulnerability allows remote attackers to cause a denial of service by sending crafted LDAP packets to TCP port 389 (as demonstrated by the ProtoVer LDAP testsuite). The provided sources do not specify a remediation in the available documents. If...

5CVSS6.7AI score0.01596EPSS
CVE
CVE
added 2006/01/09 11:0 a.m.42 views

CVE-2006-0127

Rockliffe MailSite IMAP (pre-6.1.22.1) suffers a directory-traversal in the RENAME command that enables remote authenticated users to rename other users’ folders. Affects the IMAP service; impact includes partial integrity (I: Partial, A: None, C: None) with no confidentiality/availability impact...

4CVSS6.2AI score0.01603EPSS
CVE
CVE
added 2006/01/09 11:0 a.m.39 views

CVE-2006-0128

Rockliffe MailSite IMAP service (affected: versions before 6.1.22.1) is vulnerable to a buffer overflow. The vulnerability arises in the IMAP component, with a remote attacker able to trigger an overflow; the exact impact and attack vectors are not specified in the provided documents. No explicit...

10CVSS7AI score0.02743EPSS