CVE-2003-0487

Опубликовано: 07 авг. 2003

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Multiple buffer overflows in Kerio MailServer 5.6.3 allow remote authenticated users to cause a denial of service and possibly execute arbitrary code via (1) a long showuser parameter in the do_subscribe module, (2) a long folder parameter in the add_acl module, (3) a long folder parameter in the list module, and (4) a long user parameter in the do_map module.

Ссылки

http://marc.info/?l=bugtraq&m=105596982503760&w=2
http://nautopia.org/vulnerabilidades/kerio_mailserver.htm
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/7967
Exploit
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/12368
http://marc.info/?l=bugtraq&m=105596982503760&w=2
http://nautopia.org/vulnerabilidades/kerio_mailserver.htm
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/7967
Exploit
Patch
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/12368

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:kerio:kerio_mailserver:5.6.3:*:*:*:*:*:*:*

EPSS

Процентиль: 93%

0.0979

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-v352-gc7j-mw97

github

больше 3 лет назад