exploitDog

CVE-2005-1516

Опубликовано: 11 мая 2005

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

DList (dlist.exe) in DMail 3.1a allows remote attackers to bypass authentication, read log files, and shutdown the system via a sendlog command with an incorrect password hash, which is not properly handled by the _cmd_sendlog function.

Ссылки

http://secunia.com/advisories/15242
Vendor Advisory
http://www.security.org.sg/vuln/dmail31a.html
http://www.securityfocus.com/bid/13497
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/20412
http://secunia.com/advisories/15242
Vendor Advisory
http://www.security.org.sg/vuln/dmail31a.html
http://www.securityfocus.com/bid/13497
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/20412

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:netwin:dmail:3.1a:*:*:*:*:*:*:*

EPSS

Процентиль: 70%

0.00644

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-vjm7-2pxf-3w7x

github

почти 4 года назад

DList (dlist.exe) in DMail 3.1a allows remote attackers to bypass authentication, read log files, and shutdown the system via a sendlog command with an incorrect password hash, which is not properly handled by the _cmd_sendlog function.

EPSS

Процентиль: 70%

0.00644

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other