Kerio : Security Vulnerabilities, CVEs, Published In August 2003
Multiple cross-site scripting (XSS) vulnerabilities in Kerio MailServer 5.6.3 allow remote attackers to insert arbitrary web script via (1) the add_name parameter in the add_acl module, or (2) the alias parameter in the do_map module.
Max CVSS
5.1
EPSS Score
2.56%
Published
2003-08-07
Updated
2017-07-11
Multiple buffer overflows in Kerio MailServer 5.6.3 allow remote authenticated users to cause a denial of service and possibly execute arbitrary code via (1) a long showuser parameter in the do_subscribe module, (2) a long folder parameter in the add_acl module, (3) a long folder parameter in the list module, and (4) a long user parameter in the do_map module.
Max CVSS
7.5
EPSS Score
1.71%
Published
2003-08-07
Updated
2017-07-11
2 vulnerabilities found