Netwin : Security Vulnerabilities, CVEs, Published In 2005

CVE-2005-1714

Cross-site scripting (XSS) vulnerability in NetWin SurgeMail 3.0c2 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
Max CVSS
4.3
EPSS Score
0.17%
Published
2005-05-24
Updated
2011-03-08

CVE-2005-1516

DList (dlist.exe) in DMail 3.1a allows remote attackers to bypass authentication, read log files, and shutdown the system via a sendlog command with an incorrect password hash, which is not properly handled by the _cmd_sendlog function.
Max CVSS
7.5
EPSS Score
0.83%
Published
2005-05-11
Updated
2017-07-11

CVE-2005-1478

Format string vulnerability in dSMTP (dsmtp.exe) in DMail 3.1a allows remote attackers to execute arbitrary code via format string specifiers in the xtellmail command.
Max CVSS
7.5
EPSS Score
4.42%
Published
2005-05-11
Updated
2017-07-11

CVE-2005-1034

SurgeFTP 2.2m1 allows remote attackers to cause a denial of service (application hang) via the LEAK command.
Max CVSS
5.0
EPSS Score
1.54%
Published
2005-05-02
Updated
2017-07-11

CVE-2005-0846

Multiple cross-site scripting (XSS) vulnerabilities in the email auto-reply message in SurgeMail 2.2g3 allow remote attackers to inject arbitrary web script or HTML via the (1) message subject or (2) message header field.
Max CVSS
4.3
EPSS Score
0.25%
Published
2005-05-02
Updated
2016-10-18
5 vulnerabilities found
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!
Accept Close