CVSS: 10.0EPSS: 6%CPEs: 6EXPL: 1CVE-2004-1192 – Citadel/UX 6.27 - Format String
https://notcve.org/view.php?id=CVE-2004-1192
15 Dec 2004 — Format string vulnerability in the lprintf function in Citadel/UX 6.27 and earlier allows remote attackers to execute arbitrary code via format string specifiers sent to the server. • https://www.exploit-db.com/exploits/681 •
CVSS: 7.5EPSS: 24%CPEs: 5EXPL: 7CVE-2004-1705 – Citadel/UX - Remote Denial of Service (PoC)
https://notcve.org/view.php?id=CVE-2004-1705
30 Jul 2004 — Buffer overflow in Citadel/UX 6.23 and earlier allows remote attackers to cause a denial of service via a long username. • https://www.exploit-db.com/exploits/370 •
CVSS: 5.5EPSS: 0%CPEs: 3EXPL: 0CVE-2004-1933
https://notcve.org/view.php?id=CVE-2004-1933
12 Apr 2004 — Citadel/UX 5.00 through 6.14 installs the database directory and files with world-read permissions, which could allow local users to bypass access controls and read unauthorized messages. • http://marc.info/?l=bugtraq&m=108180024428804&w=2 •
CVSS: 10.0EPSS: 3%CPEs: 1EXPL: 0CVE-2002-0432
https://notcve.org/view.php?id=CVE-2002-0432
11 Jun 2002 — Buffer overflow in (1) lprintf and (2) cprintf in sysdep.c of Citadel/UX 5.90 and earlier allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via attacks such as a long HELO command to the SMTP server. • http://online.securityfocus.com/archive/1/260934 •