Vulnerabilities > ALT N > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2006-08-26 | CVE-2006-4370 | Privilege Escalation vulnerability in Alt-N Webadmin 3.2.3/3.2.4 Alt-N WebAdmin 3.2.3 and 3.2.4 running with MDaemon 9.0.5, and possibly earlier, allow remote authenticated domain administrators to change a global administrator's password and gain privileges via the userlist.wdm file. | 7.5 |
| 2006-05-30 | CVE-2006-2646 | Remote Pre-Authentication IMAP Buffer Overflow vulnerability in Alt-N MDaemon Buffer overflow in Alt-N MDaemon, possibly 9.0.1 and earlier, allows remote attackers to execute arbitrary code via a long A0001 argument that begins with a '"' (double quote). | 7.5 |
| 2005-12-15 | CVE-2005-4266 | Remote Security vulnerability in Mdaemon WorldClient.dll in Alt-N MDaemon and WorldClient 8.1.3 trusts a Session parameter that contains a randomly generated session ID that is associated with a username, which allows remote attackers to perform actions as other users by guessing or sniffing the random value. | 7.5 |
| 2004-12-31 | CVE-2004-2504 | Local Privilege Escalation vulnerability in Alt-N MDaemon The GUI in Alt-N Technologies MDaemon 7.2 and earlier, including 6.8, executes child processes such as NOTEPAD.EXE with SYSTEM privileges when users create new files, which allows local users with physical access to gain privileges. | 7.2 |
| 2003-12-29 | CVE-2003-1200 | Buffer Overflow vulnerability in Alt-N MDaemon/WorldClient Form2Raw Raw Message Handler Stack-based buffer overflow in FORM2RAW.exe in Alt-N MDaemon 6.5.2 through 6.8.5 allows remote attackers to execute arbitrary code via a long From parameter to Form2Raw.cgi. | 7.5 |
| 2003-08-07 | CVE-2003-0471 | Buffer Overflow vulnerability in Alt-N WebAdmin USER Parameter Buffer overflow in WebAdmin.exe for WebAdmin allows remote attackers to execute arbitrary code via an HTTP request to WebAdmin.dll with a long USER argument. | 7.5 |
| 2002-12-31 | CVE-2002-1741 | Unspecified vulnerability in Alt-N Worldclient Directory traversal vulnerability in WorldClient.cgi in WorldClient for Alt-N Technologies MDaemon 5.0.5.0 and earlier allows local users to delete arbitrary files via a ".." (dot dot) in the Attachments parameter. | 7.2 |
| 2001-02-12 | CVE-2001-0104 | Unspecified vulnerability in Alt-N Mdaemon 3.5.1 MDaemon Pro 3.5.1 and earlier allows local users to bypass the "lock server" security setting by pressing the Cancel button at the password prompt, then pressing the enter key. | 7.2 |
| 2000-12-11 | CVE-2000-1021 | Unspecified vulnerability in Alt-N Mdaemon 3.1.1 Heap overflow in WebConfig in Mdaemon 3.1.1 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long URL. | 7.5 |
| 2000-12-11 | CVE-2000-1020 | Unspecified vulnerability in Alt-N Mdaemon 3.1.1 Heap overflow in Worldclient in Mdaemon 3.1.1 and earlier allows remote attackers to cause a denial of service and possibly execute arbitrary commands via a long URL. | 7.5 |