Pmail Pegasus vulnerabilities
2 known vulnerabilities affecting pmail/pegasus.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
CRITICAL1HIGH1
Vulnerabilities
Page 1 of 1
CVE-2004-2513P3CRITICALCVSS 10.0PoCv4.012004-12-31
CVE-2004-2513 [CRITICAL] CVE-2004-2513: Buffer overflow in the IMAP service of Mercury (Pegasus) Mail 4.01 allows remote attackers to execut
Buffer overflow in the IMAP service of Mercury (Pegasus) Mail 4.01 allows remote attackers to execute arbitrary code via a long SELECT command.
nvd
CVE-2017-9046P4HIGHCVSS 7.3v4.722017-05-21
CVE-2017-9046 [HIGH] CWE-20 CVE-2017-9046: winpm-32.exe in Pegasus Mail (aka Pmail) v4.72 build 572 allows code execution via a crafted ssgp.dl
winpm-32.exe in Pegasus Mail (aka Pmail) v4.72 build 572 allows code execution via a crafted ssgp.dll file that must be installed locally. For example, if ssgp.dll is on the desktop and executes arbitrary code in the DllMain function, then clicking on a mailto: link on a remote web page triggers the attack.
nvd