Vulnerabilities > Almail
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2015-02-20 | CVE-2015-0879 | Improper Input Validation vulnerability in Almail Al-Mail32 CREAR AL-Mail32 before 1.13d allows remote attackers to cause a denial of service (application crash) via a (1) CON, (2) AUX, or (3) NUL device name in the filename of an attachment. | 4.3 |
2015-02-20 | CVE-2015-0878 | Path Traversal vulnerability in Almail Al-Mail32 Directory traversal vulnerability in CREAR AL-Mail32 before 1.13d allows remote attackers to write to arbitrary files via a crafted filename of an attachment. | 5.8 |