NotCVE - vendor:"Kolab" product:"Kolab Groupware Server" version:"2.0.1"

2 results (0.002 seconds)

CVSS: 7.8EPSS: 0%CPEs: 3EXPL: 0

CVE-2006-0213

https://notcve.org/view.php?id=CVE-2006-0213

14 Jan 2006 — Kolab Server 2.0.1, 2.0.2 and development versions pre-2.1-20051215 and earlier, when authenticating users via secure SMTP, stores authentication credentials in plaintext in the postfix.log file, which allows local users to gain privileges. • http://kolab.org/security/kolab-vendor-notice-08.txt •

CVSS: 9.1EPSS: 0%CPEs: 2EXPL: 1

CVE-2005-4828

https://notcve.org/view.php?id=CVE-2005-4828

31 Dec 2005 — Kolab Server 2.0.0 and 2.0.1 does not properly handle when a large email is sent with a "." in the wrong place, which causes kolabfilter to add another ".", which might break clear-text signatures and attachments. NOTE: it is not clear whether this issue crosses privilege boundaries, so this might not be a vulnerability. • http://kolab.org/security/kolab-vendor-notice-07.txt •