CVSS: 7.8EPSS: 0%CPEs: 7EXPL: 3CVE-2004-2504
https://notcve.org/view.php?id=CVE-2004-2504
31 Dec 2004 — The GUI in Alt-N Technologies MDaemon 7.2 and earlier, including 6.8, executes child processes such as NOTEPAD.EXE with SYSTEM privileges when users create new files, which allows local users with physical access to gain privileges. • http://archives.neohapsis.com/archives/bugtraq/2004-11/0385.html •
CVSS: 7.5EPSS: 4%CPEs: 4EXPL: 2CVE-2003-1463 – Alt-N WebAdmin 2.0.x - Remote File Disclosure
https://notcve.org/view.php?id=CVE-2003-1463
31 Dec 2003 — Absolute path traversal vulnerability in Alt-N Technologies WebAdmin 2.0.0 through 2.0.2 allows remote attackers with administrator privileges to (1) determine the installation path by reading the contents of the Name parameter in a link, and (2) read arbitrary files via an absolute path in the Name parameter. • https://www.exploit-db.com/exploits/22542 • CWE-20: Improper Input Validation •
CVSS: 9.0EPSS: 1%CPEs: 1EXPL: 1CVE-2003-1470
https://notcve.org/view.php?id=CVE-2003-1470
31 Dec 2003 — Buffer overflow in IMAP service in MDaemon 6.7.5 and earlier allows remote authenticated users to cause a denial of service (crash) and execute arbitrary code via a CREATE command with a long mailbox name. • http://securityreason.com/securityalert/3296 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 6.5EPSS: 0%CPEs: 1EXPL: 0CVE-2003-1471
https://notcve.org/view.php?id=CVE-2003-1471
31 Dec 2003 — MDaemon POP server 6.0.7 and earlier allows remote authenticated users to cause a denial of service (crash) via a (1) DELE or (2) UIDL with a negative number. • http://archive.cert.uni-stuttgart.de/bugtraq/2003/04/msg00364.html • CWE-20: Improper Input Validation •
CVSS: 9.8EPSS: 59%CPEs: 9EXPL: 6CVE-2003-1200 – Alt-N MDaemon 6.x/WorldClient - Form2Raw Raw Message Handler Buffer Overflow
https://notcve.org/view.php?id=CVE-2003-1200
29 Dec 2003 — Stack-based buffer overflow in FORM2RAW.exe in Alt-N MDaemon 6.5.2 through 6.8.5 allows remote attackers to execute arbitrary code via a long From parameter to Form2Raw.cgi. • https://www.exploit-db.com/exploits/23501 •
CVSS: 9.8EPSS: 71%CPEs: 1EXPL: 4CVE-2003-0471 – Alt-N WebAdmin - USER Buffer Overflow
https://notcve.org/view.php?id=CVE-2003-0471
28 Jun 2003 — Buffer overflow in WebAdmin.exe for WebAdmin allows remote attackers to execute arbitrary code via an HTTP request to WebAdmin.dll with a long USER argument. Desbordamiento de búfer en WebAdmin.exe de WebAdmin permite a atacantes remotos ejecutar código arbitrario mediante una petición HTTP al WebAdmin.dll con un argumento USER largo. • https://www.exploit-db.com/exploits/16776 •
CVSS: 6.5EPSS: 4%CPEs: 4EXPL: 3CVE-2002-1539 – Alt-N MDaemon 6.0.x - POP Server Buffer Overflow
https://notcve.org/view.php?id=CVE-2002-1539
18 Mar 2003 — Buffer overflow in MDaemon POP server 6.0.7 and earlier allows remote authenticated users to cause a denial of service via long (1) DELE or (2) UIDL arguments. Desbordamiento de búfer en MDaemon POP server 6.0.7 y anteriores, permite a usuarios remotos autentificados causar la Denegación de Servicios (DoS) mediante argumentos DELE o UIDL largos. • https://www.exploit-db.com/exploits/21965 •
CVSS: 9.1EPSS: 0%CPEs: 7EXPL: 0CVE-2002-1738
https://notcve.org/view.php?id=CVE-2002-1738
31 Dec 2002 — Alt-N Technologies MDaemon 5.0.5.0 and earlier creates a default MDaemon mail account with a password of MServer, which could allow remote attackers to send anonymous email. • http://online.securityfocus.com/archive/1/271374 •
CVSS: 7.8EPSS: 0%CPEs: 8EXPL: 2CVE-2002-1740 – MDaemon WorldClient 5.0.x - Folder Creation Buffer Overflow
https://notcve.org/view.php?id=CVE-2002-1740
31 Dec 2002 — Buffer overflow in WorldClient.cgi in WorldClient in Alt-N Technologies MDaemon 5.0.5.0 and earlier allows local users to execute arbitrary code via a long folder name (NewFolder parameter). • https://www.exploit-db.com/exploits/21439 •
CVSS: 7.2EPSS: 0%CPEs: 7EXPL: 2CVE-2002-1741 – WorldClient 5.0.x - Arbitrary File Deletion
https://notcve.org/view.php?id=CVE-2002-1741
31 Dec 2002 — Directory traversal vulnerability in WorldClient.cgi in WorldClient for Alt-N Technologies MDaemon 5.0.5.0 and earlier allows local users to delete arbitrary files via a ".." (dot dot) in the Attachments parameter. • https://www.exploit-db.com/exploits/21438 •