CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2001-1285
https://notcve.org/view.php?id=CVE-2001-1285
12 Oct 2001 — Directory traversal vulnerability in readmail.cgi for Ipswitch IMail 7.04 and earlier allows remote attackers to access the mailboxes of other users via a .. (dot dot) in the mbx parameter. • http://archives.neohapsis.com/archives/bugtraq/2001-10/0082.html •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2001-1286
https://notcve.org/view.php?id=CVE-2001-1286
12 Oct 2001 — Ipswitch IMail 7.04 and earlier stores a user's session ID in a URL, which could allow remote attackers to hijack sessions by obtaining the URL, e.g. via an HTML email that causes the Referrer to be sent to a URL under the attacker's control. • http://archives.neohapsis.com/archives/bugtraq/2001-10/0082.html •
CVSS: 9.8EPSS: 6%CPEs: 3EXPL: 1CVE-2001-1287 – Linux Kernel 2.2.x/2.4.x - I/O System Call File Existence
https://notcve.org/view.php?id=CVE-2001-1287
12 Oct 2001 — Buffer overflow in Web Calendar in Ipswitch IMail 7.04 and earlier allows remote attackers to execute arbitrary code via a long HTTP GET request. • https://www.exploit-db.com/exploits/22458 •
CVSS: 9.1EPSS: 0%CPEs: 3EXPL: 0CVE-2001-1284
https://notcve.org/view.php?id=CVE-2001-1284
12 Oct 2001 — Ipswitch IMail 7.04 and earlier uses predictable session IDs for authentication, which allows remote attackers to hijack sessions of other users. • http://archives.neohapsis.com/archives/bugtraq/2001-10/0082.html •
CVSS: 9.8EPSS: 3%CPEs: 1EXPL: 0CVE-2001-0494
https://notcve.org/view.php?id=CVE-2001-0494
27 Jun 2001 — Buffer overflow in IPSwitch IMail SMTP server 6.06 and possibly prior versions allows remote attackers to execute arbitrary code via a long From: header. • http://archives.neohapsis.com/archives/bugtraq/2001-04/0433.html •
CVSS: 7.5EPSS: 1%CPEs: 6EXPL: 1CVE-2000-0780 – Ipswitch IMail 6.x - File Attachment
https://notcve.org/view.php?id=CVE-2000-0780
13 Oct 2000 — The web server in IPSWITCH IMail 6.04 and earlier allows remote attackers to read and delete arbitrary files via a .. (dot dot) attack. • https://www.exploit-db.com/exploits/20182 •
CVSS: 7.5EPSS: 1%CPEs: 8EXPL: 0CVE-2000-0301
https://notcve.org/view.php?id=CVE-2000-0301
06 Apr 2000 — Ipswitch IMAIL server 6.02 and earlier allows remote attackers to cause a denial of service via the AUTH CRAM-MD5 command. • http://marc.info/?l=bugtraq&m=95505800117143&w=2 •
CVSS: 7.5EPSS: 1%CPEs: 3EXPL: 1CVE-2000-0056 – Ipswitch IMail 5.0.8/6.0/6.1 - IMonitor 'status.cgi' Denial of Service
https://notcve.org/view.php?id=CVE-2000-0056
05 Jan 2000 — IMail IMONITOR status.cgi CGI script allows remote attackers to cause a denial of service with many calls to status.cgi. • https://www.exploit-db.com/exploits/19711 •