GCVE - cpe:2.3:a:alt-n:mdaemon:9.0.5:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:alt-n:mdaemon:9.0.5:*:*:*:*:*:*:*

part: a version: 9.0.5 update: *

Vendor	Alt N (`d2850752-2767-5bcb-9b57-571bd6caa9b9`)
Product	Mdaemon (`4b328c42-9752-517a-b4cc-b7f70ef0ead9`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2008-6967`	vulnerable	2026-06-08 04:51:05.275878	Details available Multiple unspecified vulnerabilities in WorldClient in Alt-N MDaemon before 10.02 have unknown impact and attack vectors, probably related to cross-site scripting (XSS) and WorldClient DLL 10.0.1, a different vulnerability than CVE-2008-6893. Published: 2009-08-13T16:00:00.000Z Updated: 2024-08-07T11:49:02.503Z Open on db.gcve.eu Reference links http://www.vupen.com/english/advisories/2008/3206 http://secunia.com/advisories/32142 https://exchange.xforce.ibmcloud.com/vulnerabilities/46688 http://files.altn.com/MDaemon/Release/RelNotes_en.txt http://osvdb.org/50011	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-5968`	vulnerable	2026-06-08 04:49:21.702293	Details available MDaemon 9.0.5, 9.0.6, 9.51, and 9.53, and possibly other versions, installs the MDaemon application folder with insecure permissions (Users create files/directories), which allows local users to execute arbitrary code by creating malicious RASAPI32.DLL or MPRAPI.DLL libraries in the MDaemon\APP folder, which is an untrusted search path element due to insecure permissions. Published: 2006-11-17T22:00:00.000Z Updated: 2024-08-07T20:12:31.178Z Open on db.gcve.eu Reference links http://secunia.com/secunia_research/2006-67/advisory/ http://www.vupen.com/english/advisories/2006/4538 http://www.securityfocus.com/archive/1/451821/100/100/threaded http://secunia.com/advisories/21554 https://exchange.xforce.ibmcloud.com/vulnerabilities/30331	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-5708`	vulnerable	2026-06-08 04:49:21.096725	Details available Multiple unspecified vulnerabilities in MDaemon and WorldClient in Alt-N Technologies MDaemon before 9.50 allow attackers to cause a denial of service (memory consumption) via unspecified vectors resulting in memory leaks. Published: 2006-11-04T01:00:00.000Z Updated: 2025-04-03T15:26:14.870Z Open on db.gcve.eu Reference links http://files.altn.com/MDaemon/Release/RelNotes_en.txt	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2006-4364`	vulnerable	2026-06-08 04:49:17.716290	Details available Multiple heap-based buffer overflows in the POP3 server in Alt-N Technologies MDaemon before 9.0.6 allow remote attackers to cause a denial of service (daemon crash) and possibly execute arbitrary code via long strings that contain '@' characters in the (1) USER and (2) APOP commands. Published: 2006-08-25T23:00:00.000Z Updated: 2024-08-07T19:06:07.630Z Open on db.gcve.eu Reference links https://www.exploit-db.com/exploits/2245 http://securitytracker.com/id?1016729 http://www.vupen.com/english/advisories/2006/3361 http://www.infigo.hr/en/in_focus/advisories/INFIGO-2006-08-04 https://exchange.xforce.ibmcloud.com/vulnerabilities/28517	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.