cpe:2.3:a:novell:netmail:3.5.2:c1:*:*:*:*:*:*
Multiple heap-based buffer overflows in avirus.exe in Novell NetMail 3.5.2 before Messaging Architects M+NetMail 3.52f (aka 3.5.2F) allows remote attackers to execute arbitrary code via unspecified ASCII integers used as memory allocation arguments, aka "ZDI-CAN-162."
Source: MITRE
Max CVSS
6.8
EPSS Score
34.64%
Published
2007-12-10
Updated
2018-10-15
Stack-based buffer overflow in webadmin.exe in Novell NetMail 3.5.2 allows remote attackers to execute arbitrary code via a long username during HTTP Basic authentication.
Source: MITRE
Max CVSS
6.8
EPSS Score
94.20%
Published
2007-03-08
Updated
2018-10-16
The IMAP daemon (IMAPD) in Novell NetMail before 3.52e FTF2 allows remote authenticated users to cause a denial of service via an APPEND command with a single "(" (parenthesis) in the argument.
Source: MITRE
Max CVSS
4.0
EPSS Score
0.69%
Published
2006-12-27
Updated
2011-03-08

CVE-2006-6761

Public exploit
Stack-based buffer overflow in the IMAP daemon (IMAPD) in Novell NetMail before 3.52e FTF2 allows remote authenticated users to execute arbitrary code via a long argument to the SUBSCRIBE command.
Source: MITRE
Max CVSS
6.5
EPSS Score
15.69%
Published
2006-12-27
Updated
2011-03-08
Novell NetMail automatically processes HTML in an attachment without prompting the user to save or open it, which makes it easier for remote attackers to conduct web-based attacks and steal cookies.
Source: MITRE
Max CVSS
6.4
EPSS Score
1.83%
Published
2005-07-09
Updated
2011-03-08
5 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!