Filtered by vendor Netwin
Subscribe
Total
50 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2000-0609 | 1 Netwin | 2 Cwmail, Dmailweb | 2025-04-03 | 5.0 MEDIUM | N/A |
|
NetWin dMailWeb and cwMail 2.6g and earlier allows remote attackers to cause a denial of service via a long username parameter.
|
|||||
| CVE-2000-0422 | 1 Netwin | 1 Dmail | 2025-04-03 | 7.5 HIGH | N/A |
|
Buffer overflow in Netwin DMailWeb CGI program allows remote attackers to execute arbitrary commands via a long utoken parameter.
|
|||||
| CVE-2002-0273 | 1 Netwin | 1 Cwmail | 2025-04-03 | 4.6 MEDIUM | N/A |
|
Buffer overflow in CWMail.exe in NetWin before 2.8a allows remote authenticated users to execute arbitrary code via a long item parameter.
|
|||||
| CVE-2005-1478 | 1 Netwin | 1 Dmail | 2025-04-03 | 7.5 HIGH | N/A |
|
Format string vulnerability in dSMTP (dsmtp.exe) in DMail 3.1a allows remote attackers to execute arbitrary code via format string specifiers in the xtellmail command.
|
|||||
| CVE-2001-0698 | 1 Netwin | 1 Surgeftp | 2025-04-03 | 5.0 MEDIUM | N/A |
|
Directory traversal vulnerability in NetWin SurgeFTP 2.0a and 1.0b allows a remote attacker to list arbitrary files and directories via the 'nlist ...' command.
|
|||||
| CVE-2000-0490 | 1 Netwin | 1 Dmail | 2025-04-03 | 10.0 HIGH | N/A |
|
Buffer overflow in the NetWin DSMTP 2.7q in the NetWin dmail package allows remote attackers to execute arbitrary commands via a long ETRN request.
|
|||||
| CVE-2004-2254 | 1 Netwin | 1 Surgeldap | 2025-04-03 | 7.5 HIGH | N/A |
|
SurgeLDAP 1.0g (Build 12), and possibly other versions before 1.0h, allows remote attackers to bypass authentication for the administration interface via a direct request to admin.cgi with a modified utoken parameter.
|
|||||
| CVE-2001-0696 | 1 Netwin | 1 Surgeftp | 2025-04-03 | 5.0 MEDIUM | N/A |
|
NetWin SurgeFTP 2.0a and 1.0b allows a remote attacker to cause a denial of service (crash) via a CD command to a directory with an MS-DOS device name such as con.
|
|||||
| CVE-2001-0697 | 1 Netwin | 1 Surgeftp | 2025-04-03 | 5.0 MEDIUM | N/A |
|
NetWin SurgeFTP prior to 1.1h allows a remote attacker to cause a denial of service (crash) via an 'ls ..' command.
|
|||||
| CVE-2000-0782 | 1 Netwin | 1 Netauth | 2025-04-03 | 5.0 MEDIUM | N/A |
|
netauth.cgi program in Netwin Netauth 4.2e and earlier allows remote attackers to read arbitrary files via a .. (dot dot) attack.
|
|||||