Search criteria Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.

12 vulnerabilities found for ability_mail_server by code-crafters

FKIE_CVE-2013-6162

Vulnerability from fkie_nvd - Published: 2013-12-21 00:55 - Updated: 2025-04-11 00:51
Severity ?
Summary
Cross-site scripting (XSS) vulnerability in Code-Crafters Ability Mail Server 3.1.1 allows remote attackers to inject arbitrary web script or HTML via the body of an email.
References
cve@mitre.orghttp://www.exploit-db.com/exploits/30373Exploit
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/89807
af854a3a-2127-422b-91ae-364da2661108http://www.exploit-db.com/exploits/30373Exploit
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/89807
Impacted products
Vendor Product Version
code-crafters ability_mail_server 3.1.1
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:3.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "CE677250-381F-4AAB-B252-40E4AC9948D8",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Cross-site scripting (XSS) vulnerability in Code-Crafters Ability Mail Server 3.1.1 allows remote attackers to inject arbitrary web script or HTML via the body of an email."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad cross-site scripting (XSS) en Code-Crafters Ability Mail Server 3.1.1 permite a atacantes remotos inyectar script web o HTML de forma arbitraria a trav\u00e9s del cuerpo de un email."
    }
  ],
  "id": "CVE-2013-6162",
  "lastModified": "2025-04-11T00:51:21.963",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "MEDIUM",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "NONE",
          "baseScore": 4.3,
          "confidentialityImpact": "NONE",
          "integrityImpact": "PARTIAL",
          "vectorString": "AV:N/AC:M/Au:N/C:N/I:P/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 8.6,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": true
      }
    ]
  },
  "published": "2013-12-21T00:55:04.347",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.exploit-db.com/exploits/30373"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/89807"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Exploit"
      ],
      "url": "http://www.exploit-db.com/exploits/30373"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/89807"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-79"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

FKIE_CVE-2009-3445

Vulnerability from fkie_nvd - Published: 2009-09-28 22:30 - Updated: 2025-04-09 00:30
Severity ?
Summary
Unspecified vulnerability in Code-Crafters Ability Mail Server before 2.70 allows remote attackers to cause a denial of service (daemon crash) via an IMAP4 FETCH command.
References
cve@mitre.orghttp://secunia.com/advisories/36888Vendor Advisory
cve@mitre.orghttp://www.code-crafters.com/abilitymailserver/updatelog.htmlVendor Advisory
cve@mitre.orghttp://www.securityfocus.com/bid/36519
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/36888Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.code-crafters.com/abilitymailserver/updatelog.htmlVendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/36519
Impacted products
Vendor Product Version
code-crafters ability_mail_server *
code-crafters ability_mail_server 1.18
code-crafters ability_mail_server 2.01b
code-crafters ability_mail_server 2.02b
code-crafters ability_mail_server 2.03b
code-crafters ability_mail_server 2.04b
code-crafters ability_mail_server 2.05b
code-crafters ability_mail_server 2.10
code-crafters ability_mail_server 2.11
code-crafters ability_mail_server 2.12
code-crafters ability_mail_server 2.13
code-crafters ability_mail_server 2.14
code-crafters ability_mail_server 2.15
code-crafters ability_mail_server 2.16
code-crafters ability_mail_server 2.17
code-crafters ability_mail_server 2.18
code-crafters ability_mail_server 2.19
code-crafters ability_mail_server 2.20
code-crafters ability_mail_server 2.21
code-crafters ability_mail_server 2.22
code-crafters ability_mail_server 2.23
code-crafters ability_mail_server 2.50
code-crafters ability_mail_server 2.51
code-crafters ability_mail_server 2.52
code-crafters ability_mail_server 2.53
code-crafters ability_mail_server 2.54
code-crafters ability_mail_server 2.55
code-crafters ability_mail_server 2.56
code-crafters ability_mail_server 2.57
code-crafters ability_mail_server 2.58
code-crafters ability_mail_server 2.60
code-crafters ability_mail_server 2.61
code-crafters ability_mail_server 2.62
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F14D49D3-19D9-4AF7-B76E-290F7DF5D8E6",
              "versionEndIncluding": "2.63",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:1.18:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB5EC297-5A2A-4359-B93C-BF9EDE4D99E6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.01b:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6FFDB5D-9511-49A5-BA56-27F9E8EDBC88",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.02b:*:*:*:*:*:*:*",
              "matchCriteriaId": "5EAA589C-28AF-44D7-B520-E15C06A3DBD7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.03b:*:*:*:*:*:*:*",
              "matchCriteriaId": "80531858-C703-4C08-BC4A-12B02723C961",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.04b:*:*:*:*:*:*:*",
              "matchCriteriaId": "2F852F1C-E8D7-48E8-92AA-B7CCF5AB3A24",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.05b:*:*:*:*:*:*:*",
              "matchCriteriaId": "4D1E6919-5B04-4401-ACA5-F2A71A7483DA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "D9EC47A8-37BC-4000-9323-AF81ED9A0699",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "F19F1B93-0423-4681-8821-9E4A9E3AE6DB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD744492-6BE6-4E30-8796-23581A344374",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE328F78-4C47-49E5-8A15-26475A739229",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "9036D941-EE6F-4182-A91C-D2871BB5B20C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.15:*:*:*:*:*:*:*",
              "matchCriteriaId": "488084AA-9C8D-497F-88CF-881480FFA6B6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.16:*:*:*:*:*:*:*",
              "matchCriteriaId": "3E8E1AE7-1698-46A6-A377-0646DD124F37",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.17:*:*:*:*:*:*:*",
              "matchCriteriaId": "FDA94B27-748C-4DA6-BEB0-FAA29F34A54E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.18:*:*:*:*:*:*:*",
              "matchCriteriaId": "784B5CE3-8D72-4DF6-86AE-5A7FB7EDDF14",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.19:*:*:*:*:*:*:*",
              "matchCriteriaId": "149A348A-3F37-4853-B885-2EECF303536E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.20:*:*:*:*:*:*:*",
              "matchCriteriaId": "938529F4-31B5-47E9-A8AE-9DA3B25F9D48",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.21:*:*:*:*:*:*:*",
              "matchCriteriaId": "C732C79B-E224-420D-B96D-1EB0D2EECE24",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.22:*:*:*:*:*:*:*",
              "matchCriteriaId": "16B7A98B-A682-42B5-8CDD-1FE9F4CF74CF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.23:*:*:*:*:*:*:*",
              "matchCriteriaId": "627FD5F2-302F-407E-9000-8D5358C9CF98",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.50:*:*:*:*:*:*:*",
              "matchCriteriaId": "0004DD62-C64E-4F99-ADE0-EB91AEE1021D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.51:*:*:*:*:*:*:*",
              "matchCriteriaId": "D0119286-87F5-4D60-AF54-A0C8F948BF12",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.52:*:*:*:*:*:*:*",
              "matchCriteriaId": "48993397-4379-48DF-969F-CAE0663C18E6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.53:*:*:*:*:*:*:*",
              "matchCriteriaId": "8446A8DB-5344-4087-A54E-9B1D505E6F4C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.54:*:*:*:*:*:*:*",
              "matchCriteriaId": "40B6FD5A-1C29-4E3B-AB74-FD9600BE7EB8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.55:*:*:*:*:*:*:*",
              "matchCriteriaId": "2DC685FC-37CA-4770-9159-B387C02E8EC1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.56:*:*:*:*:*:*:*",
              "matchCriteriaId": "4FA42ACC-27A8-4673-9049-2CA48C00E87E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.57:*:*:*:*:*:*:*",
              "matchCriteriaId": "A18C7269-C786-4E19-B96A-0F417500B25B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.58:*:*:*:*:*:*:*",
              "matchCriteriaId": "51948C81-145A-434F-ACDA-D2738B65D29E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.60:*:*:*:*:*:*:*",
              "matchCriteriaId": "356004E2-A09E-4FAA-83D4-7402B41F29E7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.61:*:*:*:*:*:*:*",
              "matchCriteriaId": "8E1F7399-24CC-4470-A4FB-BCB7CAF0DDEE",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.62:*:*:*:*:*:*:*",
              "matchCriteriaId": "1B717A33-965C-4A97-BA06-0A06DC97D31E",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Unspecified vulnerability in Code-Crafters Ability Mail Server before 2.70 allows remote attackers to cause a denial of service (daemon crash) via an IMAP4 FETCH command."
    },
    {
      "lang": "es",
      "value": "Vulnerabilidad sin especificar en Code-Crafters Ability Mail Server v2.70, permite a atacantes remotos provocar una denegaci\u00f3n de servicio (ca\u00edda de demonio) a trav\u00e9s del comando IMAP4 FETCH."
    }
  ],
  "id": "CVE-2009-3445",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": true,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 5.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2009-09-28T22:30:01.017",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/36888"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.code-crafters.com/abilitymailserver/updatelog.html"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/36519"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/36888"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.code-crafters.com/abilitymailserver/updatelog.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/36519"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

FKIE_CVE-2007-6101

Vulnerability from fkie_nvd - Published: 2007-11-23 20:46 - Updated: 2025-04-09 00:30
Severity ?
Summary
Ability Mail Server before 2.61 allows remote authenticated users to cause a denial of service (daemon crash) via (1) malformed number list ranges in unspecified IMAP commands, and possibly (2) a blank string in unspecified messages.
References
cve@mitre.orghttp://osvdb.org/42399
cve@mitre.orghttp://osvdb.org/42400
cve@mitre.orghttp://secunia.com/advisories/27736Vendor Advisory
cve@mitre.orghttp://www.code-crafters.com/abilitymailserver/updatelog.htmlPatch
cve@mitre.orghttp://www.securityfocus.com/bid/26514Patch
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/38586
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/38587
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/42399
af854a3a-2127-422b-91ae-364da2661108http://osvdb.org/42400
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/27736Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.code-crafters.com/abilitymailserver/updatelog.htmlPatch
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/26514Patch
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/38586
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/38587
Impacted products
Vendor Product Version
code-crafters ability_mail_server 1.18
code-crafters ability_mail_server 2.01b
code-crafters ability_mail_server 2.02b
code-crafters ability_mail_server 2.03b
code-crafters ability_mail_server 2.04b
code-crafters ability_mail_server 2.05b
code-crafters ability_mail_server 2.10
code-crafters ability_mail_server 2.11
code-crafters ability_mail_server 2.12
code-crafters ability_mail_server 2.13
code-crafters ability_mail_server 2.14
code-crafters ability_mail_server 2.15
code-crafters ability_mail_server 2.16
code-crafters ability_mail_server 2.17
code-crafters ability_mail_server 2.18
code-crafters ability_mail_server 2.19
code-crafters ability_mail_server 2.20
code-crafters ability_mail_server 2.21
code-crafters ability_mail_server 2.22
code-crafters ability_mail_server 2.23
code-crafters ability_mail_server 2.50
code-crafters ability_mail_server 2.51
code-crafters ability_mail_server 2.52
code-crafters ability_mail_server 2.53
code-crafters ability_mail_server 2.54
code-crafters ability_mail_server 2.55
code-crafters ability_mail_server 2.56
code-crafters ability_mail_server 2.57
code-crafters ability_mail_server 2.58
code-crafters ability_mail_server 2.60
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:1.18:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB5EC297-5A2A-4359-B93C-BF9EDE4D99E6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.01b:*:*:*:*:*:*:*",
              "matchCriteriaId": "C6FFDB5D-9511-49A5-BA56-27F9E8EDBC88",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.02b:*:*:*:*:*:*:*",
              "matchCriteriaId": "5EAA589C-28AF-44D7-B520-E15C06A3DBD7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.03b:*:*:*:*:*:*:*",
              "matchCriteriaId": "80531858-C703-4C08-BC4A-12B02723C961",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.04b:*:*:*:*:*:*:*",
              "matchCriteriaId": "2F852F1C-E8D7-48E8-92AA-B7CCF5AB3A24",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.05b:*:*:*:*:*:*:*",
              "matchCriteriaId": "4D1E6919-5B04-4401-ACA5-F2A71A7483DA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.10:*:*:*:*:*:*:*",
              "matchCriteriaId": "D9EC47A8-37BC-4000-9323-AF81ED9A0699",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "F19F1B93-0423-4681-8821-9E4A9E3AE6DB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.12:*:*:*:*:*:*:*",
              "matchCriteriaId": "AD744492-6BE6-4E30-8796-23581A344374",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.13:*:*:*:*:*:*:*",
              "matchCriteriaId": "EE328F78-4C47-49E5-8A15-26475A739229",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.14:*:*:*:*:*:*:*",
              "matchCriteriaId": "9036D941-EE6F-4182-A91C-D2871BB5B20C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.15:*:*:*:*:*:*:*",
              "matchCriteriaId": "488084AA-9C8D-497F-88CF-881480FFA6B6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.16:*:*:*:*:*:*:*",
              "matchCriteriaId": "3E8E1AE7-1698-46A6-A377-0646DD124F37",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.17:*:*:*:*:*:*:*",
              "matchCriteriaId": "FDA94B27-748C-4DA6-BEB0-FAA29F34A54E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.18:*:*:*:*:*:*:*",
              "matchCriteriaId": "784B5CE3-8D72-4DF6-86AE-5A7FB7EDDF14",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.19:*:*:*:*:*:*:*",
              "matchCriteriaId": "149A348A-3F37-4853-B885-2EECF303536E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.20:*:*:*:*:*:*:*",
              "matchCriteriaId": "938529F4-31B5-47E9-A8AE-9DA3B25F9D48",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.21:*:*:*:*:*:*:*",
              "matchCriteriaId": "C732C79B-E224-420D-B96D-1EB0D2EECE24",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.22:*:*:*:*:*:*:*",
              "matchCriteriaId": "16B7A98B-A682-42B5-8CDD-1FE9F4CF74CF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.23:*:*:*:*:*:*:*",
              "matchCriteriaId": "627FD5F2-302F-407E-9000-8D5358C9CF98",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.50:*:*:*:*:*:*:*",
              "matchCriteriaId": "0004DD62-C64E-4F99-ADE0-EB91AEE1021D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.51:*:*:*:*:*:*:*",
              "matchCriteriaId": "D0119286-87F5-4D60-AF54-A0C8F948BF12",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.52:*:*:*:*:*:*:*",
              "matchCriteriaId": "48993397-4379-48DF-969F-CAE0663C18E6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.53:*:*:*:*:*:*:*",
              "matchCriteriaId": "8446A8DB-5344-4087-A54E-9B1D505E6F4C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.54:*:*:*:*:*:*:*",
              "matchCriteriaId": "40B6FD5A-1C29-4E3B-AB74-FD9600BE7EB8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.55:*:*:*:*:*:*:*",
              "matchCriteriaId": "2DC685FC-37CA-4770-9159-B387C02E8EC1",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.56:*:*:*:*:*:*:*",
              "matchCriteriaId": "4FA42ACC-27A8-4673-9049-2CA48C00E87E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.57:*:*:*:*:*:*:*",
              "matchCriteriaId": "A18C7269-C786-4E19-B96A-0F417500B25B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.58:*:*:*:*:*:*:*",
              "matchCriteriaId": "51948C81-145A-434F-ACDA-D2738B65D29E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:2.60:*:*:*:*:*:*:*",
              "matchCriteriaId": "356004E2-A09E-4FAA-83D4-7402B41F29E7",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Ability Mail Server before 2.61 allows remote authenticated users to cause a denial of service (daemon crash) via (1) malformed number list ranges in unspecified IMAP commands, and possibly (2) a blank string in unspecified messages."
    },
    {
      "lang": "es",
      "value": "Ability Mail Server, en versiones anteriores a la 2.61, permite que usuarios autenticados remotamente provoquen denegaci\u00f3n de servicio (ca\u00edda del demonio) a trav\u00e9s de (1) rangos de listas num\u00e9ricas mal formadas en comandos IMAP no  especificados, y posiblemente, (2) a trav\u00e9s de una cadena vac\u00eda en mensajes no especificados."
    }
  ],
  "id": "CVE-2007-6101",
  "lastModified": "2025-04-09T00:30:58.490",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "SINGLE",
          "availabilityImpact": "PARTIAL",
          "baseScore": 4.0,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:S/C:N/I:N/A:P",
          "version": "2.0"
        },
        "exploitabilityScore": 8.0,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2007-11-23T20:46:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "url": "http://osvdb.org/42399"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://osvdb.org/42400"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/27736"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://www.code-crafters.com/abilitymailserver/updatelog.html"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/26514"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38586"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38587"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/42399"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://osvdb.org/42400"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/27736"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.code-crafters.com/abilitymailserver/updatelog.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Patch"
      ],
      "url": "http://www.securityfocus.com/bid/26514"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38586"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38587"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-20"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

FKIE_CVE-2004-2495

Vulnerability from fkie_nvd - Published: 2004-12-31 05:00 - Updated: 2026-04-16 00:27
Severity ?
Summary
The (1) Webmail, (2) admin, and (3) SMTP services in Ability Mail Server 1.18 allow remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous connections to the service.
References
cve@mitre.orghttp://members.lycos.co.uk/r34ct/main/Ability_mail_server_1.18.txtVendor Advisory
cve@mitre.orghttp://secunia.com/advisories/12039Vendor Advisory
cve@mitre.orghttp://securitytracker.com/id?1010672Vendor Advisory
cve@mitre.orghttp://www.osvdb.org/7719
cve@mitre.orghttp://www.securityfocus.com/bid/10695
cve@mitre.orghttps://exchange.xforce.ibmcloud.com/vulnerabilities/16677
af854a3a-2127-422b-91ae-364da2661108http://members.lycos.co.uk/r34ct/main/Ability_mail_server_1.18.txtVendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/12039Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://securitytracker.com/id?1010672Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108http://www.osvdb.org/7719
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/10695
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/16677
Impacted products
Vendor Product Version
code-crafters ability_mail_server 1.18
To clipboard 

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:code-crafters:ability_mail_server:1.18:*:*:*:*:*:*:*",
              "matchCriteriaId": "DB5EC297-5A2A-4359-B93C-BF9EDE4D99E6",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The (1) Webmail, (2) admin, and (3) SMTP services in Ability Mail Server 1.18 allow remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous connections to the service."
    }
  ],
  "id": "CVE-2004-2495",
  "lastModified": "2026-04-16T00:27:16.627",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 7.8,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 6.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2004-12-31T05:00:00.000",
  "references": [
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://members.lycos.co.uk/r34ct/main/Ability_mail_server_1.18.txt"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/12039"
    },
    {
      "source": "cve@mitre.org",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://securitytracker.com/id?1010672"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.osvdb.org/7719"
    },
    {
      "source": "cve@mitre.org",
      "url": "http://www.securityfocus.com/bid/10695"
    },
    {
      "source": "cve@mitre.org",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16677"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://members.lycos.co.uk/r34ct/main/Ability_mail_server_1.18.txt"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://secunia.com/advisories/12039"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://securitytracker.com/id?1010672"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.osvdb.org/7719"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securityfocus.com/bid/10695"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16677"
    }
  ],
  "sourceIdentifier": "cve@mitre.org",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-Other"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

CVE-2013-6162 (GCVE-0-2013-6162)

Vulnerability from cvelistv5 – Published: 2013-12-21 00:00 – Updated: 2024-08-06 17:29
VLAI?
Summary
Cross-site scripting (XSS) vulnerability in Code-Crafters Ability Mail Server 3.1.1 allows remote attackers to inject arbitrary web script or HTML via the body of an email.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
Date Public ?
2013-12-17 00:00
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T17:29:43.048Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "30373",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "http://www.exploit-db.com/exploits/30373"
          },
          {
            "name": "abilitymailserver-cve20136162-xss(89807)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/89807"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2013-12-17T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Cross-site scripting (XSS) vulnerability in Code-Crafters Ability Mail Server 3.1.1 allows remote attackers to inject arbitrary web script or HTML via the body of an email."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-08-28T12:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "30373",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "http://www.exploit-db.com/exploits/30373"
        },
        {
          "name": "abilitymailserver-cve20136162-xss(89807)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/89807"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2013-6162",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Cross-site scripting (XSS) vulnerability in Code-Crafters Ability Mail Server 3.1.1 allows remote attackers to inject arbitrary web script or HTML via the body of an email."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "30373",
              "refsource": "EXPLOIT-DB",
              "url": "http://www.exploit-db.com/exploits/30373"
            },
            {
              "name": "abilitymailserver-cve20136162-xss(89807)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/89807"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2013-6162",
    "datePublished": "2013-12-21T00:00:00.000Z",
    "dateReserved": "2013-10-16T00:00:00.000Z",
    "dateUpdated": "2024-08-06T17:29:43.048Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2009-3445 (GCVE-0-2009-3445)

Vulnerability from cvelistv5 – Published: 2009-09-28 22:00 – Updated: 2024-09-16 22:25
VLAI?
Summary
Unspecified vulnerability in Code-Crafters Ability Mail Server before 2.70 allows remote attackers to cause a denial of service (daemon crash) via an IMAP4 FETCH command.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
http://www.securityfocus.com/bid/36519 vdb-entryx_refsource_BID
http://secunia.com/advisories/36888 third-party-advisoryx_refsource_SECUNIA
http://www.code-crafters.com/abilitymailserver/up… x_refsource_CONFIRM
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T06:31:09.251Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "36519",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/36519"
          },
          {
            "name": "36888",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/36888"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.code-crafters.com/abilitymailserver/updatelog.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Unspecified vulnerability in Code-Crafters Ability Mail Server before 2.70 allows remote attackers to cause a denial of service (daemon crash) via an IMAP4 FETCH command."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2009-09-28T22:00:00.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "36519",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/36519"
        },
        {
          "name": "36888",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/36888"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.code-crafters.com/abilitymailserver/updatelog.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2009-3445",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Unspecified vulnerability in Code-Crafters Ability Mail Server before 2.70 allows remote attackers to cause a denial of service (daemon crash) via an IMAP4 FETCH command."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "36519",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/36519"
            },
            {
              "name": "36888",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/36888"
            },
            {
              "name": "http://www.code-crafters.com/abilitymailserver/updatelog.html",
              "refsource": "CONFIRM",
              "url": "http://www.code-crafters.com/abilitymailserver/updatelog.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2009-3445",
    "datePublished": "2009-09-28T22:00:00.000Z",
    "dateReserved": "2009-09-28T00:00:00.000Z",
    "dateUpdated": "2024-09-16T22:25:38.824Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2007-6101 (GCVE-0-2007-6101)

Vulnerability from cvelistv5 – Published: 2007-11-23 20:00 – Updated: 2024-08-07 15:54
VLAI?
Summary
Ability Mail Server before 2.61 allows remote authenticated users to cause a denial of service (daemon crash) via (1) malformed number list ranges in unspecified IMAP commands, and possibly (2) a blank string in unspecified messages.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
http://osvdb.org/42400 vdb-entryx_refsource_OSVDB
http://www.securityfocus.com/bid/26514 vdb-entryx_refsource_BID
http://secunia.com/advisories/27736 third-party-advisoryx_refsource_SECUNIA
http://osvdb.org/42399 vdb-entryx_refsource_OSVDB
http://www.code-crafters.com/abilitymailserver/up… x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
Date Public ?
2007-11-21 00:00
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T15:54:26.920Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "42400",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/42400"
          },
          {
            "name": "26514",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/26514"
          },
          {
            "name": "27736",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/27736"
          },
          {
            "name": "42399",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/42399"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.code-crafters.com/abilitymailserver/updatelog.html"
          },
          {
            "name": "ability-blank-string-dos(38586)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38586"
          },
          {
            "name": "ability-imap4-dos(38587)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38587"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-11-21T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Ability Mail Server before 2.61 allows remote authenticated users to cause a denial of service (daemon crash) via (1) malformed number list ranges in unspecified IMAP commands, and possibly (2) a blank string in unspecified messages."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-28T12:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "42400",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/42400"
        },
        {
          "name": "26514",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/26514"
        },
        {
          "name": "27736",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/27736"
        },
        {
          "name": "42399",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/42399"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.code-crafters.com/abilitymailserver/updatelog.html"
        },
        {
          "name": "ability-blank-string-dos(38586)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38586"
        },
        {
          "name": "ability-imap4-dos(38587)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38587"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-6101",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Ability Mail Server before 2.61 allows remote authenticated users to cause a denial of service (daemon crash) via (1) malformed number list ranges in unspecified IMAP commands, and possibly (2) a blank string in unspecified messages."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "42400",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/42400"
            },
            {
              "name": "26514",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/26514"
            },
            {
              "name": "27736",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/27736"
            },
            {
              "name": "42399",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/42399"
            },
            {
              "name": "http://www.code-crafters.com/abilitymailserver/updatelog.html",
              "refsource": "CONFIRM",
              "url": "http://www.code-crafters.com/abilitymailserver/updatelog.html"
            },
            {
              "name": "ability-blank-string-dos(38586)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38586"
            },
            {
              "name": "ability-imap4-dos(38587)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38587"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2007-6101",
    "datePublished": "2007-11-23T20:00:00.000Z",
    "dateReserved": "2007-11-23T00:00:00.000Z",
    "dateUpdated": "2024-08-07T15:54:26.920Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2004-2495 (GCVE-0-2004-2495)

Vulnerability from cvelistv5 – Published: 2005-10-25 04:00 – Updated: 2024-08-08 01:29
VLAI?
Summary
The (1) Webmail, (2) admin, and (3) SMTP services in Ability Mail Server 1.18 allow remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous connections to the service.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
http://secunia.com/advisories/12039 third-party-advisoryx_refsource_SECUNIA
https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
http://www.securityfocus.com/bid/10695 vdb-entryx_refsource_BID
http://securitytracker.com/id?1010672 vdb-entryx_refsource_SECTRACK
http://www.osvdb.org/7719 vdb-entryx_refsource_OSVDB
http://members.lycos.co.uk/r34ct/main/Ability_mai… x_refsource_MISC
Date Public ?
2004-07-11 00:00
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-08T01:29:13.666Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "12039",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/12039"
          },
          {
            "name": "ability-mult-connection-dos(16677)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16677"
          },
          {
            "name": "10695",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/10695"
          },
          {
            "name": "1010672",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1010672"
          },
          {
            "name": "7719",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://www.osvdb.org/7719"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://members.lycos.co.uk/r34ct/main/Ability_mail_server_1.18.txt"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2004-07-11T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "The (1) Webmail, (2) admin, and (3) SMTP services in Ability Mail Server 1.18 allow remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous connections to the service."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-10T14:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "12039",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/12039"
        },
        {
          "name": "ability-mult-connection-dos(16677)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16677"
        },
        {
          "name": "10695",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/10695"
        },
        {
          "name": "1010672",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1010672"
        },
        {
          "name": "7719",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://www.osvdb.org/7719"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://members.lycos.co.uk/r34ct/main/Ability_mail_server_1.18.txt"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2004-2495",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The (1) Webmail, (2) admin, and (3) SMTP services in Ability Mail Server 1.18 allow remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous connections to the service."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "12039",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/12039"
            },
            {
              "name": "ability-mult-connection-dos(16677)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16677"
            },
            {
              "name": "10695",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/10695"
            },
            {
              "name": "1010672",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1010672"
            },
            {
              "name": "7719",
              "refsource": "OSVDB",
              "url": "http://www.osvdb.org/7719"
            },
            {
              "name": "http://members.lycos.co.uk/r34ct/main/Ability_mail_server_1.18.txt",
              "refsource": "MISC",
              "url": "http://members.lycos.co.uk/r34ct/main/Ability_mail_server_1.18.txt"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2004-2495",
    "datePublished": "2005-10-25T04:00:00.000Z",
    "dateReserved": "2005-10-25T00:00:00.000Z",
    "dateUpdated": "2024-08-08T01:29:13.666Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2013-6162 (GCVE-0-2013-6162)

Vulnerability from nvd – Published: 2013-12-21 00:00 – Updated: 2024-08-06 17:29
VLAI?
Summary
Cross-site scripting (XSS) vulnerability in Code-Crafters Ability Mail Server 3.1.1 allows remote attackers to inject arbitrary web script or HTML via the body of an email.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
Date Public ?
2013-12-17 00:00
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T17:29:43.048Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "30373",
            "tags": [
              "exploit",
              "x_refsource_EXPLOIT-DB",
              "x_transferred"
            ],
            "url": "http://www.exploit-db.com/exploits/30373"
          },
          {
            "name": "abilitymailserver-cve20136162-xss(89807)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/89807"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2013-12-17T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Cross-site scripting (XSS) vulnerability in Code-Crafters Ability Mail Server 3.1.1 allows remote attackers to inject arbitrary web script or HTML via the body of an email."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-08-28T12:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "30373",
          "tags": [
            "exploit",
            "x_refsource_EXPLOIT-DB"
          ],
          "url": "http://www.exploit-db.com/exploits/30373"
        },
        {
          "name": "abilitymailserver-cve20136162-xss(89807)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/89807"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2013-6162",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Cross-site scripting (XSS) vulnerability in Code-Crafters Ability Mail Server 3.1.1 allows remote attackers to inject arbitrary web script or HTML via the body of an email."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "30373",
              "refsource": "EXPLOIT-DB",
              "url": "http://www.exploit-db.com/exploits/30373"
            },
            {
              "name": "abilitymailserver-cve20136162-xss(89807)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/89807"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2013-6162",
    "datePublished": "2013-12-21T00:00:00.000Z",
    "dateReserved": "2013-10-16T00:00:00.000Z",
    "dateUpdated": "2024-08-06T17:29:43.048Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2009-3445 (GCVE-0-2009-3445)

Vulnerability from nvd – Published: 2009-09-28 22:00 – Updated: 2024-09-16 22:25
VLAI?
Summary
Unspecified vulnerability in Code-Crafters Ability Mail Server before 2.70 allows remote attackers to cause a denial of service (daemon crash) via an IMAP4 FETCH command.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
http://www.securityfocus.com/bid/36519 vdb-entryx_refsource_BID
http://secunia.com/advisories/36888 third-party-advisoryx_refsource_SECUNIA
http://www.code-crafters.com/abilitymailserver/up… x_refsource_CONFIRM
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T06:31:09.251Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "36519",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/36519"
          },
          {
            "name": "36888",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/36888"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.code-crafters.com/abilitymailserver/updatelog.html"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "descriptions": [
        {
          "lang": "en",
          "value": "Unspecified vulnerability in Code-Crafters Ability Mail Server before 2.70 allows remote attackers to cause a denial of service (daemon crash) via an IMAP4 FETCH command."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2009-09-28T22:00:00.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "36519",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/36519"
        },
        {
          "name": "36888",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/36888"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.code-crafters.com/abilitymailserver/updatelog.html"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2009-3445",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Unspecified vulnerability in Code-Crafters Ability Mail Server before 2.70 allows remote attackers to cause a denial of service (daemon crash) via an IMAP4 FETCH command."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "36519",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/36519"
            },
            {
              "name": "36888",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/36888"
            },
            {
              "name": "http://www.code-crafters.com/abilitymailserver/updatelog.html",
              "refsource": "CONFIRM",
              "url": "http://www.code-crafters.com/abilitymailserver/updatelog.html"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2009-3445",
    "datePublished": "2009-09-28T22:00:00.000Z",
    "dateReserved": "2009-09-28T00:00:00.000Z",
    "dateUpdated": "2024-09-16T22:25:38.824Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2007-6101 (GCVE-0-2007-6101)

Vulnerability from nvd – Published: 2007-11-23 20:00 – Updated: 2024-08-07 15:54
VLAI?
Summary
Ability Mail Server before 2.61 allows remote authenticated users to cause a denial of service (daemon crash) via (1) malformed number list ranges in unspecified IMAP commands, and possibly (2) a blank string in unspecified messages.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
http://osvdb.org/42400 vdb-entryx_refsource_OSVDB
http://www.securityfocus.com/bid/26514 vdb-entryx_refsource_BID
http://secunia.com/advisories/27736 third-party-advisoryx_refsource_SECUNIA
http://osvdb.org/42399 vdb-entryx_refsource_OSVDB
http://www.code-crafters.com/abilitymailserver/up… x_refsource_CONFIRM
https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
Date Public ?
2007-11-21 00:00
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-07T15:54:26.920Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "42400",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/42400"
          },
          {
            "name": "26514",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/26514"
          },
          {
            "name": "27736",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/27736"
          },
          {
            "name": "42399",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://osvdb.org/42399"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "http://www.code-crafters.com/abilitymailserver/updatelog.html"
          },
          {
            "name": "ability-blank-string-dos(38586)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38586"
          },
          {
            "name": "ability-imap4-dos(38587)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38587"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2007-11-21T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "Ability Mail Server before 2.61 allows remote authenticated users to cause a denial of service (daemon crash) via (1) malformed number list ranges in unspecified IMAP commands, and possibly (2) a blank string in unspecified messages."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-28T12:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "42400",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/42400"
        },
        {
          "name": "26514",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/26514"
        },
        {
          "name": "27736",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/27736"
        },
        {
          "name": "42399",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://osvdb.org/42399"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "http://www.code-crafters.com/abilitymailserver/updatelog.html"
        },
        {
          "name": "ability-blank-string-dos(38586)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38586"
        },
        {
          "name": "ability-imap4-dos(38587)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38587"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2007-6101",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Ability Mail Server before 2.61 allows remote authenticated users to cause a denial of service (daemon crash) via (1) malformed number list ranges in unspecified IMAP commands, and possibly (2) a blank string in unspecified messages."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "42400",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/42400"
            },
            {
              "name": "26514",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/26514"
            },
            {
              "name": "27736",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/27736"
            },
            {
              "name": "42399",
              "refsource": "OSVDB",
              "url": "http://osvdb.org/42399"
            },
            {
              "name": "http://www.code-crafters.com/abilitymailserver/updatelog.html",
              "refsource": "CONFIRM",
              "url": "http://www.code-crafters.com/abilitymailserver/updatelog.html"
            },
            {
              "name": "ability-blank-string-dos(38586)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38586"
            },
            {
              "name": "ability-imap4-dos(38587)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/38587"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2007-6101",
    "datePublished": "2007-11-23T20:00:00.000Z",
    "dateReserved": "2007-11-23T00:00:00.000Z",
    "dateUpdated": "2024-08-07T15:54:26.920Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

CVE-2004-2495 (GCVE-0-2004-2495)

Vulnerability from nvd – Published: 2005-10-25 04:00 – Updated: 2024-08-08 01:29
VLAI?
Summary
The (1) Webmail, (2) admin, and (3) SMTP services in Ability Mail Server 1.18 allow remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous connections to the service.
Severity ?
No CVSS data available.
CWE
  • n/a
Assigner
References
http://secunia.com/advisories/12039 third-party-advisoryx_refsource_SECUNIA
https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
http://www.securityfocus.com/bid/10695 vdb-entryx_refsource_BID
http://securitytracker.com/id?1010672 vdb-entryx_refsource_SECTRACK
http://www.osvdb.org/7719 vdb-entryx_refsource_OSVDB
http://members.lycos.co.uk/r34ct/main/Ability_mai… x_refsource_MISC
Date Public ?
2004-07-11 00:00
Show details on NVD website
To clipboard 

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-08T01:29:13.666Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "12039",
            "tags": [
              "third-party-advisory",
              "x_refsource_SECUNIA",
              "x_transferred"
            ],
            "url": "http://secunia.com/advisories/12039"
          },
          {
            "name": "ability-mult-connection-dos(16677)",
            "tags": [
              "vdb-entry",
              "x_refsource_XF",
              "x_transferred"
            ],
            "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16677"
          },
          {
            "name": "10695",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/10695"
          },
          {
            "name": "1010672",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://securitytracker.com/id?1010672"
          },
          {
            "name": "7719",
            "tags": [
              "vdb-entry",
              "x_refsource_OSVDB",
              "x_transferred"
            ],
            "url": "http://www.osvdb.org/7719"
          },
          {
            "tags": [
              "x_refsource_MISC",
              "x_transferred"
            ],
            "url": "http://members.lycos.co.uk/r34ct/main/Ability_mail_server_1.18.txt"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2004-07-11T00:00:00.000Z",
      "descriptions": [
        {
          "lang": "en",
          "value": "The (1) Webmail, (2) admin, and (3) SMTP services in Ability Mail Server 1.18 allow remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous connections to the service."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-10T14:57:01.000Z",
        "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "shortName": "mitre"
      },
      "references": [
        {
          "name": "12039",
          "tags": [
            "third-party-advisory",
            "x_refsource_SECUNIA"
          ],
          "url": "http://secunia.com/advisories/12039"
        },
        {
          "name": "ability-mult-connection-dos(16677)",
          "tags": [
            "vdb-entry",
            "x_refsource_XF"
          ],
          "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16677"
        },
        {
          "name": "10695",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/10695"
        },
        {
          "name": "1010672",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://securitytracker.com/id?1010672"
        },
        {
          "name": "7719",
          "tags": [
            "vdb-entry",
            "x_refsource_OSVDB"
          ],
          "url": "http://www.osvdb.org/7719"
        },
        {
          "tags": [
            "x_refsource_MISC"
          ],
          "url": "http://members.lycos.co.uk/r34ct/main/Ability_mail_server_1.18.txt"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "cve@mitre.org",
          "ID": "CVE-2004-2495",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "The (1) Webmail, (2) admin, and (3) SMTP services in Ability Mail Server 1.18 allow remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous connections to the service."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "12039",
              "refsource": "SECUNIA",
              "url": "http://secunia.com/advisories/12039"
            },
            {
              "name": "ability-mult-connection-dos(16677)",
              "refsource": "XF",
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/16677"
            },
            {
              "name": "10695",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/10695"
            },
            {
              "name": "1010672",
              "refsource": "SECTRACK",
              "url": "http://securitytracker.com/id?1010672"
            },
            {
              "name": "7719",
              "refsource": "OSVDB",
              "url": "http://www.osvdb.org/7719"
            },
            {
              "name": "http://members.lycos.co.uk/r34ct/main/Ability_mail_server_1.18.txt",
              "refsource": "MISC",
              "url": "http://members.lycos.co.uk/r34ct/main/Ability_mail_server_1.18.txt"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
    "assignerShortName": "mitre",
    "cveId": "CVE-2004-2495",
    "datePublished": "2005-10-25T04:00:00.000Z",
    "dateReserved": "2005-10-25T00:00:00.000Z",
    "dateUpdated": "2024-08-08T01:29:13.666Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}