Vulnerabilities > Smartertools

DATE CVE VULNERABILITY TITLE RISK
2004-12-31 CVE-2004-2587 Denial-Of-Service vulnerability in Smartertools Smartermail 1.6.1511/1.6.1529
login.aspx in SmarterTools SmarterMail 1.6.1511 and 1.6.1529 allows remote attackers to cause a denial of service via a long txtusername parameter, possibly due to a buffer overflow.
network
low complexity
smartertools
5.0
2004-12-31 CVE-2004-2586 Directory Traversal vulnerability in Smartertools Smartermail 1.6.1511/1.6.1529
Directory traversal vulnerability in frmGetAttachment.aspx in SmarterTools SmarterMail 1.6.1511 and 1.6.1529 allows remote attackers to read arbitrary files via the filename parameter.
network
low complexity
smartertools
5.0
2004-12-31 CVE-2004-2585 Cross-Site Scripting vulnerability in Smartertools Smartermail 1.6.1511/1.6.1529
Cross-site scripting (XSS) vulnerability in frmCompose.aspx in SmarterTools SmarterMail 1.6.1511 and 1.6.1529 allows remote attackers to inject arbitrary web script or HTML via Javascript to the "check spelling" feature in the compose area.
network
smartertools
4.3
2004-12-31 CVE-2004-2584 Remote Security vulnerability in Smartertools Smartermail 1.6.1511/1.6.1529
frmAddfolder.aspx in SmarterTools SmarterMail 1.6.1511 and 1.6.1529 allows remote authenticated users to create a folder that SmarterMail cannot delete or rename via a folder name with a null byte ("%00").
network
low complexity
smartertools
4.0
2004-12-31 CVE-2004-2583 Denial-Of-Service vulnerability in Smartertools Smartermail 1.6.1511/1.6.1529
SMTP service in SmarterTools SmarterMail 1.6.1511 and 1.6.1529 allows remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous open connections to TCP port 25.
network
low complexity
smartertools
7.8