Mailenable

Mailenable

49 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2012-0389

Exploit
  • EPSS 33.84%
  • Veröffentlicht 24.01.2012 18:55:01
  • Zuletzt bearbeitet 11.04.2025 00:51:21

Cross-site scripting (XSS) vulnerability in ForgottenPassword.aspx in MailEnable Professional, Enterprise, and Premium 4.26 and earlier, 5.x before 5.53, and 6.x before 6.03 allows remote attackers to inject arbitrary web script or HTML via the Usern...

5

CVE-2010-2580

  • EPSS 2.18%
  • Veröffentlicht 15.09.2010 18:00:25
  • Zuletzt bearbeitet 11.04.2025 00:51:21

The SMTP service (MESMTPC.exe) in MailEnable 3.x and 4.25 does not properly perform a length check, which allows remote attackers to cause a denial of service (crash) via a long (1) email address in the MAIL FROM command, or (2) domain name in the RC...

5

CVE-2008-3449

  • EPSS 3.42%
  • Veröffentlicht 04.08.2008 17:41:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

MailEnable Professional 3.5.2 and Enterprise 3.52 allow remote attackers to cause a denial of service (crash) via multiple IMAP connection requests to the same folder.

7.8

CVE-2007-0955

  • EPSS 14.59%
  • Veröffentlicht 15.02.2007 02:28:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

The NTLM_UnPack_Type3 function in MENTLM.dll in MailEnable Professional 2.35 and earlier allows remote attackers to cause a denial of service (application crash) via certain base64-encoded data following an AUTHENTICATE NTLM command to the imap port ...

6.8

CVE-2006-6291

  • EPSS 1.46%
  • Veröffentlicht 05.12.2006 11:28:00
  • Zuletzt bearbeitet 09.04.2025 00:30:58

Stack overflow in the IMAP module (MEIMAPS.EXE) in MailEnable Professional 1.6 through 1.83 and 2.0 through 2.33, and MailEnable Enterprise 1.1 through 1.40 and 2.0 through 2.33, allows remote authenticated users to cause a denial of service (crash) ...

7.5

CVE-2006-1337

  • EPSS 2.88%
  • Veröffentlicht 21.03.2006 02:06:00
  • Zuletzt bearbeitet 16.04.2026 00:27:16

Buffer overflow in the POP 3 (POP3) service in MailEnable Standard Edition before 1.93, Professional Edition before 1.73, and Enterprise Edition before 1.21 allows remote attackers to execute arbitrary code via unknown vectors before authentication.

4.3

CVE-2004-2727

Exploit
  • EPSS 4.62%
  • Veröffentlicht 31.12.2004 05:00:00
  • Zuletzt bearbeitet 16.04.2026 00:27:16

Buffer overflow in MEHTTPS (HTTPMail) of MailEnable Professional 1.5 through 1.7 allows remote attackers to cause a denial of service (application crash) via a long HTTP GET request.

5

CVE-2004-2726

  • EPSS 1.71%
  • Veröffentlicht 31.12.2004 05:00:00
  • Zuletzt bearbeitet 16.04.2026 00:27:16

HTTPMail service in MailEnable Professional 1.18 does not properly handle arguments to the Authorization header, which allows remote attackers to cause a denial of service (null dereference and application crash). NOTE: This is a different vulnerabi...

5

CVE-2002-2357

Exploit
  • EPSS 3.35%
  • Veröffentlicht 31.12.2002 05:00:00
  • Zuletzt bearbeitet 16.04.2026 00:27:16

MailEnable 1.5 015 through 1.5 018 allows remote attackers to cause a denial of service (crash) via a long USER string, possibly due to a buffer overflow.