Gecad Technologies » Axigen Mail Server : Security Vulnerabilities, CVEs, Published In 2007 (Denial of service)
axigen 1.2.6 through 2.0.0b1 does not properly parse login credentials, which allows remote attackers to cause a denial of service (NULL dereference and application crash) via a base64-encoded "*\x00" sequence on the imap port (143/tcp).
Max CVSS
7.8
EPSS Score
3.50%
Published
2007-02-12
Updated
2017-10-19
Heap-based buffer underflow in axigen 1.2.6 through 2.0.0b1 allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via certain base64-encoded data on the pop3 port (110/tcp), which triggers an integer overflow.
Max CVSS
10.0
EPSS Score
15.48%
Published
2007-02-12
Updated
2017-10-19
2 vulnerabilities found