CyberSec.Space Logo
返回 CVE 浏览器

CVE-2004-2495

HIGH
7.8
CVSS Severity Score
EPSS Score0.0490%
EPSS Percentile20.77th
Published2004年12月31日
Last Modified2026年4月16日

Vulnerability Description

The (1) Webmail, (2) admin, and (3) SMTP services in Ability Mail Server 1.18 allow remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous connections to the service.

Affected Platforms (CPE)

📦
Code Crafters

Ability Mail Server

= 1.18

References & Advisories

🔗 http://members.lycos.co.uk/r34ct/main/Ability_mail_server_1.18.txt
🔗 http://secunia.com/advisories/12039
🔗 http://securitytracker.com/id?1010672
🔗 http://www.osvdb.org/7719
🔗 http://www.securityfocus.com/bid/10695
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/16677
🔗 http://members.lycos.co.uk/r34ct/main/Ability_mail_server_1.18.txt
🔗 http://secunia.com/advisories/12039

相关漏洞威胁

CVE-2019-95576.1

Ability Mail Server 4.2.6 has Persistent Cross Site Scripting (XSS) via the body e-mail body. To exploit the vulnerability, the vi...

CVE-2017-177526.1

Ability Mail Server 3.3.2 has Cross Site Scripting (XSS) via the body of an e-mail message, with JavaScript code executed on the R...

CVE-2009-34455.0

Unspecified vulnerability in Code-Crafters Ability Mail Server before 2.70 allows remote attackers to cause a denial of service (d...

CVE-2004-24944.3

Cross-site scripting (XSS) vulnerability in _error in Ability Mail Server 1.18 allows remote attackers to inject arbitrary web scr...