Total
28 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2000-0716 | 1 Alt-n | 1 Mdaemon | 2023-12-10 | 2.6 LOW | N/A |
| WorldClient email client in MDaemon 2.8 includes the session ID in the referer field of an HTTP request when the user clicks on a URL, which allows the visited web site to hijack the session ID and read the user's email. | |||||
| CVE-2002-1740 | 1 Alt-n | 2 Mdaemon, Worldclient | 2023-12-10 | 2.1 LOW | N/A |
| Buffer overflow in WorldClient.cgi in WorldClient in Alt-N Technologies MDaemon 5.0.5.0 and earlier allows local users to execute arbitrary code via a long folder name (NewFolder parameter). | |||||
| CVE-2003-1200 | 1 Alt-n | 1 Mdaemon | 2023-12-10 | 7.5 HIGH | N/A |
| Stack-based buffer overflow in FORM2RAW.exe in Alt-N MDaemon 6.5.2 through 6.8.5 allows remote attackers to execute arbitrary code via a long From parameter to Form2Raw.cgi. | |||||
| CVE-2001-0584 | 1 Alt-n | 1 Mdaemon | 2023-12-10 | 2.1 LOW | N/A |
| IMAP server in Alt-N Technologies MDaemon 3.5.6 allows a local user to cause a denial of service (hang) via long (1) SELECT or (2) EXAMINE commands. | |||||
| CVE-2001-0583 | 1 Alt-n | 1 Mdaemon | 2023-12-10 | 5.0 MEDIUM | N/A |
| Alt-N Technologies MDaemon 3.5.4 allows a remote attacker to create a denial of service via the URL request of a MS-DOS device (such as GET /aux) to (1) the Worldclient service at port 3000, or (2) the Webconfig service at port 3001. | |||||
| CVE-2001-0104 | 1 Alt-n | 1 Mdaemon | 2023-12-10 | 7.2 HIGH | N/A |
| MDaemon Pro 3.5.1 and earlier allows local users to bypass the "lock server" security setting by pressing the Cancel button at the password prompt, then pressing the enter key. | |||||
| CVE-2000-0399 | 1 Alt-n | 1 Mdaemon | 2023-12-10 | 5.0 MEDIUM | N/A |
| Buffer overflow in MDaemon POP server allows remote attackers to cause a denial of service via a long user name. | |||||
| CVE-2000-1020 | 1 Alt-n | 1 Mdaemon | 2023-12-10 | 7.5 HIGH | N/A |
| Heap overflow in Worldclient in Mdaemon 3.1.1 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long URL. | |||||