CVSS: 6.4EPSS: 0%CPEs: 6EXPL: 1CVE-2000-0780 – Ipswitch IMail 6.x - File Attachment
https://notcve.org/view.php?id=CVE-2000-0780
The web server in IPSWITCH IMail 6.04 and earlier allows remote attackers to read and delete arbitrary files via a .. (dot dot) attack. • https://www.exploit-db.com/exploits/20182 http://marc.info/?l=bugtraq&m=96767207207553&w=2 http://www.ipswitch.com/Support/IMail/news.html http://www.securityfocus.com/bid/1617 •
CVSS: 5.0EPSS: 0%CPEs: 8EXPL: 0CVE-2000-0301
https://notcve.org/view.php?id=CVE-2000-0301
Ipswitch IMAIL server 6.02 and earlier allows remote attackers to cause a denial of service via the AUTH CRAM-MD5 command. • http://marc.info/?l=bugtraq&m=95505800117143&w=2 http://support.ipswitch.com/kb/IM-20000208-DM02.htm http://www.securityfocus.com/bid/1094 •
CVSS: 5.0EPSS: 0%CPEs: 3EXPL: 1CVE-2000-0056 – Ipswitch IMail 5.0.8/6.0/6.1 - IMonitor 'status.cgi' Denial of Service
https://notcve.org/view.php?id=CVE-2000-0056
IMail IMONITOR status.cgi CGI script allows remote attackers to cause a denial of service with many calls to status.cgi. • https://www.exploit-db.com/exploits/19711 http://www.securityfocus.com/bid/914 •
CVSS: 7.2EPSS: 0%CPEs: 6EXPL: 4CVE-1999-1497 – Ipswitch IMail Server 5.0/5.0.5/5.0.6/5.0.7/5.0.8/6.0 - Weak Password Encryption
https://notcve.org/view.php?id=CVE-1999-1497
Ipswitch IMail 5.0 and 6.0 uses weak encryption to store passwords in registry keys, which allows local attackers to read passwords for e-mail accounts. • https://www.exploit-db.com/exploits/19683 https://www.exploit-db.com/exploits/401 http://www.securityfocus.com/archive/1/39329 http://www.securityfocus.com/bid/880 •
CVSS: 2.1EPSS: 0%CPEs: 1EXPL: 0CVE-2000-0019
https://notcve.org/view.php?id=CVE-2000-0019
IMail POP3 daemon uses weak encryption, which allows local users to read files. • https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0019 •