CyberSec.Space Logo
CVEブラウザに戻る

CVE-2005-1516

HIGH
7.5
CVSS Severity Score
EPSS Score0.0900%
EPSS Percentile0.79th
Published2005年5月11日
Last Modified2026年4月16日

Vulnerability Description

DList (dlist.exe) in DMail 3.1a allows remote attackers to bypass authentication, read log files, and shutdown the system via a sendlog command with an incorrect password hash, which is not properly handled by the _cmd_sendlog function.

Affected Platforms (CPE)

📦
Netwin

Dmail

= 3.1a

References & Advisories

🔗 http://secunia.com/advisories/15242
🔗 http://www.security.org.sg/vuln/dmail31a.html
🔗 http://www.securityfocus.com/bid/13497
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/20412
🔗 http://secunia.com/advisories/15242
🔗 http://www.security.org.sg/vuln/dmail31a.html
🔗 http://www.securityfocus.com/bid/13497
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/20412

関連する脆弱性情報

CVE-2000-049010.0

Buffer overflow in the NetWin DSMTP 2.7q in the NetWin dmail package allows remote attackers to execute arbitrary commands via a l...

CVE-2001-135510.0

Buffer overflows in NetWin Authentication Module (NWAuth) 3.0b and earlier, as implemented in DMail, SurgeFTP, and possibly other ...

CVE-2008-500510.0

Multiple stack-based buffer overflows in (1) University of Washington IMAP Toolkit 2002 through 2007c, (2) University of Washingto...

CVE-2005-14787.5

Format string vulnerability in dSMTP (dsmtp.exe) in DMail 3.1a allows remote attackers to execute arbitrary code via format string...