CyberSec.Space Logo
返回 CVE 浏览器

CVE-2008-0434

CRITICAL
9.3
CVSS Severity Score
EPSS Score0.0680%
EPSS Percentile44.84th
Published2008年1月23日
Last Modified2026年4月23日

Vulnerability Description

Format string vulnerability in the AXIMilter module in AXIGEN Mail Server 5.0.2 allows remote attackers to execute arbitrary code via format string specifiers in the CNHO command.

Affected Platforms (CPE)

📦
Gecad Technologies

Axigen Mail Server

= 5.0.2

References & Advisories

🔗 http://lists.grok.org.uk/pipermail/full-disclosure/2008-January/059788.html
🔗 http://secunia.com/advisories/28562
🔗 http://securityreason.com/securityalert/3570
🔗 http://www.securityfocus.com/archive/1/486722/100/0/threaded
🔗 http://www.securityfocus.com/bid/27363
🔗 http://www.vupen.com/english/advisories/2008/0237
🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/39803
🔗 https://www.exploit-db.com/exploits/4947

相关漏洞威胁

CVE-2020-269429.1

An issue discovered in Axigen Mail Server 10.3.x before 10.3.1.27 and 10.3.2.x before 10.3.3.1 allows unauthenticated attackers to...

CVE-2012-49406.4

Multiple directory traversal vulnerabilities in the View Log Files component in Axigen Free Mail Server allow remote attackers to ...

CVE-2015-53795.4

Cross-site scripting (XSS) vulnerability in actions.hsp in the Ajax WebMail interface in AXIGEN Mail Server before 9.0 allows remo...

CVE-2010-34605.0

Directory traversal vulnerability in the HTTP interface in AXIGEN Mail Server 7.4.1 for Windows allows remote attackers to read ar...