7.5
CVE-2004-1722
- EPSS 2.74%
- Veröffentlicht 17.08.2004 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:08:16
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginSQL injection vulnerability in calendar.html in Merak Mail Server 5.2.7 allows remote attackers to execute arbitrary SQL statements via the schedule parameter.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Merak ≫ Mail Server Version7.5.2
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 2.74% | 0.842 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 10 | 6.4 |
AV:N/AC:L/Au:N/C:P/I:P/A:P
|
http://marc.info/?l=bugtraq&m=109279057326044&w=2
http://packetstormsecurity.nl/0408-exploits/merak527.txt
http://secunia.com/advisories/12269
http://securitytracker.com/id?1010969
http://www.securityfocus.com/bid/10966
http://www.osvdb.org/9044
https://exchange.xforce.ibmcloud.com/vulnerabilities/17022