CyberSec.Space Logo
Back to CVE Browser

CVE-2004-2495

HIGH
7.8
CVSS Severity Score
EPSS Score0.0490%
EPSS Percentile20.77th
PublishedDec 31, 2004
Last ModifiedApr 16, 2026

Vulnerability Description

The (1) Webmail, (2) admin, and (3) SMTP services in Ability Mail Server 1.18 allow remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous connections to the service.

Affected Platforms (CPE)

πŸ“¦
Code Crafters

Ability Mail Server

= 1.18

References & Advisories

πŸ”— http://members.lycos.co.uk/r34ct/main/Ability_mail_server_1.18.txt
πŸ”— http://secunia.com/advisories/12039
πŸ”— http://securitytracker.com/id?1010672
πŸ”— http://www.osvdb.org/7719
πŸ”— http://www.securityfocus.com/bid/10695
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/16677
πŸ”— http://members.lycos.co.uk/r34ct/main/Ability_mail_server_1.18.txt
πŸ”— http://secunia.com/advisories/12039

Related Vulnerabilities

CVE-2019-95576.1

Ability Mail Server 4.2.6 has Persistent Cross Site Scripting (XSS) via the body e-mail body. To exploit the vulnerability, the vi...

CVE-2017-177526.1

Ability Mail Server 3.3.2 has Cross Site Scripting (XSS) via the body of an e-mail message, with JavaScript code executed on the R...

CVE-2009-34455.0

Unspecified vulnerability in Code-Crafters Ability Mail Server before 2.70 allows remote attackers to cause a denial of service (d...

CVE-2004-24944.3

Cross-site scripting (XSS) vulnerability in _error in Ability Mail Server 1.18 allows remote attackers to inject arbitrary web scr...