Approved changes feed: RSS · Atom

cpe:2.3:a:amax_information_technologies:magic_winmail_server:4.0:*:*:*:*:*:*:*

part: a version: 4.0 update: *

VendorAmax Information Technologies (2447af4a-cecb-5ada-a998-664cdc5d3c57)
ProductMagic Winmail Server (f808e551-1caf-595c-9e1a-8ab5fab37000)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2005-0315 vulnerable 2026-06-08 04:48:12.240994 Details available
The FTP service in Magic Winmail Server 4.0 Build 1112 does not verify that the IP address in a PORT command is the same as the IP address of the user of the FTP session, which allows remote authenticated users to use the server as an intermediary for port scanning.
Published: 2005-02-10T05:00:00.000Z
Updated: 2024-08-07T21:05:25.641Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2005-0314 not_vulnerable 2026-06-08 04:48:12.240689 Details available
Cross-site scripting (XSS) vulnerability in user.php in Magic Winmail Server 4.0 Build 1112 allows remote attackers to inject arbitrary web script or HTML via the personal information fields.
Published: 2005-02-10T05:00:00.000Z
Updated: 2024-08-07T21:05:25.601Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2005-0313 vulnerable 2026-06-08 04:48:12.240314 Details available
Multiple directory traversal vulnerabilities in Magic Winmail Server 4.0 Build 1112 allow remote attackers to (1) upload arbitrary files via certain parameters to upload.php or (2) read arbitrary files via certain parameters to download.php, and remote authenticated users to read, create, or delete arbitrary directories and files via the IMAP commands (3) CREATE, (4) EXAMINE, (5) SELECT, or (6) DELETE.
Published: 2005-02-10T05:00:00.000Z
Updated: 2024-08-07T21:05:25.553Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.