CVE-2005-2176
- EPSS 4.33%
- Published 09.07.2005 04:00:00
- Last modified 03.04.2025 01:03:51
Novell NetMail automatically processes HTML in an attachment without prompting the user to save or open it, which makes it easier for remote attackers to conduct web-based attacks and steal cookies.
CVE-2005-1758
- EPSS 7.38%
- Published 08.06.2005 04:00:00
- Last modified 03.04.2025 01:03:51
Buffer overflow in the IMAP command continuation function in Novell NetMail 3.52 before 3.52C may allow remote attackers to execute arbitrary code.
CVE-2005-1757
- EPSS 2.04%
- Published 08.06.2005 04:00:00
- Last modified 03.04.2025 01:03:51
Buffer overflow in the Modweb agent for Novell NetMail 3.52 before 3.52C, when renaming folders, may allow attackers to execute arbitrary code.
CVE-2005-1756
- EPSS 1.17%
- Published 08.06.2005 04:00:00
- Last modified 03.04.2025 01:03:51
Cross-site scripting (XSS) vulnerability in the ModWeb agent for Novell NetMail 3.52 before 3.52C allows remote attackers to inject arbitrary web script or HTML via calendar display fields.
CVE-2004-2298
- EPSS 0.38%
- Published 31.12.2004 05:00:00
- Last modified 03.04.2025 01:03:51
Novell Internet Messaging System (NIMS) 2.6 and 3.0, and NetMail 3.1 and 3.5, is installed with a default NMAP authentication credential, which allows remote attackers to read and write mail store data if the administrator does not change the credent...
CVE-2002-0996
- EPSS 5.19%
- Published 04.10.2002 04:00:00
- Last modified 03.04.2025 01:03:51
Multiple buffer overflows in Novell NetMail (NIMS) 3.0.3 before 3.0.3C allows remote attackers to cause a denial of service and possibly execute arbitrary code via (1) WebAdmin or (2) ModWeb.
- EPSS 2.67%
- Published 04.10.2002 04:00:00
- Last modified 03.04.2025 01:03:51
Buffer overflows in IMAP Agent (imapd) for Novell NetMail (NIMS) 3.0.3 before 3.0.3A allows remote attackers to cause a denial of service.