Vulnerabilities > Novell > Netmail > 3.5.2
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2007-12-10 | CVE-2007-6302 | Buffer Errors vulnerability in Novell Netmail 3.5.2 Multiple heap-based buffer overflows in avirus.exe in Novell NetMail 3.5.2 before Messaging Architects M+NetMail 3.52f (aka 3.5.2F) allows remote attackers to execute arbitrary code via unspecified ASCII integers used as memory allocation arguments, aka "ZDI-CAN-162." | 6.8 |
| 2007-03-08 | CVE-2007-1350 | Buffer Overflow vulnerability in Novell Netmail 3.5.2 Stack-based buffer overflow in webadmin.exe in Novell NetMail 3.5.2 allows remote attackers to execute arbitrary code via a long username during HTTP Basic authentication. network novell | 6.8 |
| 2006-12-27 | CVE-2006-6762 | Denial of Service vulnerability in Novell Netmail 3.5.2 The IMAP daemon (IMAPD) in Novell NetMail before 3.52e FTF2 allows remote authenticated users to cause a denial of service via an APPEND command with a single "(" (parenthesis) in the argument. | 4.0 |
| 2006-12-27 | CVE-2006-6761 | Buffer Overflow vulnerability in Novell Netmail 3.5.2 Stack-based buffer overflow in the IMAP daemon (IMAPD) in Novell NetMail before 3.52e FTF2 allows remote authenticated users to execute arbitrary code via a long argument to the SUBSCRIBE command. | 6.5 |
| 2005-12-31 | CVE-2005-1976 | Unspecified vulnerability in Novell Netmail 3.5.2 Novell NetMail 3.5.2a, 3.5.2b, and 3.5.2c, when running on Linux, sets the owner and group ID to 500 for certain files, which could allow users or groups with that ID to execute arbitrary code or cause a denial of service by modifying those files. | 1.7 |
| 2005-11-18 | CVE-2005-3314 | Buffer Errors vulnerability in Novell Netmail 3.5.2 Stack-based buffer overflow in the IMAP daemon in Novell Netmail 3.5.2 allows remote attackers to execute arbitrary code via "long verb arguments." | 7.5 |
| 2005-10-20 | CVE-2005-2469 | Remote Buffer Overflow vulnerability in Novell Netmail 3.5.2 Stack-based buffer overflow in the NMAP Agent for Novell NetMail 3.52C and possibly earlier versions allows local users to execute arbitrary code via a long user name in the USER command. | 4.6 |
| 2005-07-09 | CVE-2005-2176 | Unspecified vulnerability in Novell Netmail Novell NetMail automatically processes HTML in an attachment without prompting the user to save or open it, which makes it easier for remote attackers to conduct web-based attacks and steal cookies. | 6.4 |
| 2005-06-08 | CVE-2005-1758 | Remote vulnerability in Novell NetMail Buffer overflow in the IMAP command continuation function in Novell NetMail 3.52 before 3.52C may allow remote attackers to execute arbitrary code. | 7.5 |
| 2005-06-08 | CVE-2005-1757 | Remote vulnerability in Novell NetMail Buffer overflow in the Modweb agent for Novell NetMail 3.52 before 3.52C, when renaming folders, may allow attackers to execute arbitrary code. | 7.5 |