Inter7 Vpopmail vulnerabilities
3 known vulnerabilities affecting inter7/vpopmail.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2000-0091P3CRITICALCVSS 10.0PoCvvchkpw_3.4.1vvchkpw_3.4.2+8 more2000-01-21
CVE-2000-0091 [CRITICAL] CVE-2000-0091: Buffer overflow in vchkpw/vpopmail POP authentication package allows remote attackers to gain root p
Buffer overflow in vchkpw/vpopmail POP authentication package allows remote attackers to gain root privileges via a long username or password.
nvd
CVE-2006-2346P3HIGHCVSS 7.5v5.4.14v5.4.152006-05-12
CVE-2006-2346 [HIGH] CVE-2006-2346: vpopmail 5.4.14 and 5.4.15, with cleartext passwords enabled, allows remote attackers to authenticat
vpopmail 5.4.14 and 5.4.15, with cleartext passwords enabled, allows remote attackers to authenticate to an account that does not have a cleartext password set by using a blank password to (1) SMTP AUTH or (2) APOP.
nvd
CVE-2001-0990P4MEDIUMCVSS 4.6v3.4.1v3.4.2+16 more2001-09-04
CVE-2001-0990 [MEDIUM] CVE-2001-0990: Inter7 vpopmail 4.10.35 and earlier, when using the MySQL module, compiles authentication informatio
Inter7 vpopmail 4.10.35 and earlier, when using the MySQL module, compiles authentication information in cleartext into the libvpopmail.a library, which allows local users to obtain the MySQL username and password by inspecting the vpopmail programs that use the library.
nvd