Search

Find a vulnerability

Search criteria

    6 vulnerabilities found for 1st_class_mail_server by 1st_class_internet_solutions

    CVE-2004-2447 (GCVE-0-2004-2447)

    Vulnerability from cvelistv5 – Published: 2005-08-20 04:00 – Updated: 2024-08-08 01:29
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in 1st Class Mail Server 4.01 allows remote attackers to inject arbitrary web script or HTML via the Mailbox parameter to (1) viewmail.tagz, (2) the index script under /user/, (3) members.tagz, (4) general.tagz, (5) advanced.tagz, or (6) list.tagz.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://securitytracker.com/alerts/2004/Apr/1009705.html vdb-entryx_refsource_SECTRACK
    http://www.osvdb.org/5017 vdb-entryx_refsource_OSVDB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.osvdb.org/5014 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/5013 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/5015 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/11330 third-party-advisoryx_refsource_SECUNIA
    http://www.osvdb.org/5016 vdb-entryx_refsource_OSVDB
    http://www.securityfocus.com/bid/10089 vdb-entryx_refsource_BID
    http://www.osvdb.org/5012 vdb-entryx_refsource_OSVDB
    Date Public
    2004-04-08 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T01:29:13.541Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1009705",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/alerts/2004/Apr/1009705.html"
              },
              {
                "name": "5017",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/5017"
              },
              {
                "name": "1stclass-multiple-xss(15815)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15815"
              },
              {
                "name": "5014",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/5014"
              },
              {
                "name": "5013",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/5013"
              },
              {
                "name": "5015",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/5015"
              },
              {
                "name": "11330",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/11330"
              },
              {
                "name": "5016",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/5016"
              },
              {
                "name": "10089",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/10089"
              },
              {
                "name": "5012",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/5012"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-04-08T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in 1st Class Mail Server 4.01 allows remote attackers to inject arbitrary web script or HTML via the Mailbox parameter to (1) viewmail.tagz, (2) the index script under /user/, (3) members.tagz, (4) general.tagz, (5) advanced.tagz, or (6) list.tagz."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-10T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "1009705",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/alerts/2004/Apr/1009705.html"
            },
            {
              "name": "5017",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/5017"
            },
            {
              "name": "1stclass-multiple-xss(15815)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15815"
            },
            {
              "name": "5014",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/5014"
            },
            {
              "name": "5013",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/5013"
            },
            {
              "name": "5015",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/5015"
            },
            {
              "name": "11330",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/11330"
            },
            {
              "name": "5016",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/5016"
            },
            {
              "name": "10089",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/10089"
            },
            {
              "name": "5012",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/5012"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-2447",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site scripting (XSS) vulnerability in 1st Class Mail Server 4.01 allows remote attackers to inject arbitrary web script or HTML via the Mailbox parameter to (1) viewmail.tagz, (2) the index script under /user/, (3) members.tagz, (4) general.tagz, (5) advanced.tagz, or (6) list.tagz."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1009705",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/alerts/2004/Apr/1009705.html"
                },
                {
                  "name": "5017",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/5017"
                },
                {
                  "name": "1stclass-multiple-xss(15815)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15815"
                },
                {
                  "name": "5014",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/5014"
                },
                {
                  "name": "5013",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/5013"
                },
                {
                  "name": "5015",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/5015"
                },
                {
                  "name": "11330",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/11330"
                },
                {
                  "name": "5016",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/5016"
                },
                {
                  "name": "10089",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/10089"
                },
                {
                  "name": "5012",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/5012"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-2447",
        "datePublished": "2005-08-20T04:00:00.000Z",
        "dateReserved": "2005-08-20T00:00:00.000Z",
        "dateUpdated": "2024-08-08T01:29:13.541Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-2446 (GCVE-0-2004-2446)

    Vulnerability from cvelistv5 – Published: 2005-08-20 04:00 – Updated: 2024-08-08 01:29
    VLAI
    Summary
    Directory traversal vulnerability in 1st Class Mail Server 4.01 allows remote attackers to read arbitrary files via a ".." (dot dot) sequences in unknown vectors.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://securitytracker.com/alerts/2004/Apr/1009705.html vdb-entryx_refsource_SECTRACK
    http://secunia.com/advisories/11330 third-party-advisoryx_refsource_SECUNIA
    http://members.lycos.co.uk/r34ct/main/1st%20Class… x_refsource_MISC
    http://www.osvdb.org/5011 vdb-entryx_refsource_OSVDB
    http://www.securityfocus.com/bid/10089 vdb-entryx_refsource_BID
    Date Public
    2004-04-08 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T01:29:13.266Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1stclass-dotdot-directory-traversal(15812)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15812"
              },
              {
                "name": "1009705",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/alerts/2004/Apr/1009705.html"
              },
              {
                "name": "11330",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/11330"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://members.lycos.co.uk/r34ct/main/1st%20Class%20mail%20server%204.01.txt"
              },
              {
                "name": "5011",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/5011"
              },
              {
                "name": "10089",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/10089"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-04-08T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in 1st Class Mail Server 4.01 allows remote attackers to read arbitrary files via a \"..\" (dot dot) sequences in unknown vectors."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-10T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "1stclass-dotdot-directory-traversal(15812)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15812"
            },
            {
              "name": "1009705",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/alerts/2004/Apr/1009705.html"
            },
            {
              "name": "11330",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/11330"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://members.lycos.co.uk/r34ct/main/1st%20Class%20mail%20server%204.01.txt"
            },
            {
              "name": "5011",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/5011"
            },
            {
              "name": "10089",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/10089"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-2446",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in 1st Class Mail Server 4.01 allows remote attackers to read arbitrary files via a \"..\" (dot dot) sequences in unknown vectors."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1stclass-dotdot-directory-traversal(15812)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15812"
                },
                {
                  "name": "1009705",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/alerts/2004/Apr/1009705.html"
                },
                {
                  "name": "11330",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/11330"
                },
                {
                  "name": "http://members.lycos.co.uk/r34ct/main/1st%20Class%20mail%20server%204.01.txt",
                  "refsource": "MISC",
                  "url": "http://members.lycos.co.uk/r34ct/main/1st%20Class%20mail%20server%204.01.txt"
                },
                {
                  "name": "5011",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/5011"
                },
                {
                  "name": "10089",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/10089"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-2446",
        "datePublished": "2005-08-20T04:00:00.000Z",
        "dateReserved": "2005-08-20T00:00:00.000Z",
        "dateUpdated": "2024-08-08T01:29:13.266Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-2375 (GCVE-0-2004-2375)

    Vulnerability from cvelistv5 – Published: 2005-08-16 04:00 – Updated: 2024-08-08 01:22
    VLAI
    Summary
    Buffer overflow in the POP3 server in 1st Class Mail Server 4.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an APOP USER command with a long second parameter (digest).
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/4129 vdb-entryx_refsource_OSVDB
    http://securitytracker.com/id?1009279 vdb-entryx_refsource_SECTRACK
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.digiti.be/jeffosz/advisories/1stclassp… x_refsource_MISC
    http://www.securityfocus.com/bid/9794 vdb-entryx_refsource_BID
    http://secunia.com/advisories/11029 third-party-advisoryx_refsource_SECUNIA
    http://www.zone-h.org/advisories/read/id=4047 x_refsource_MISC
    Date Public
    2004-02-25 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T01:22:13.769Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "4129",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/4129"
              },
              {
                "name": "1009279",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1009279"
              },
              {
                "name": "1st-class-apop-dos(15314)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15314"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.digiti.be/jeffosz/advisories/1stclasspop3.txt"
              },
              {
                "name": "9794",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/9794"
              },
              {
                "name": "11029",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/11029"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.zone-h.org/advisories/read/id=4047"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-02-25T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Buffer overflow in the POP3 server in 1st Class Mail Server 4.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an APOP USER command with a long second parameter (digest)."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-10T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "4129",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/4129"
            },
            {
              "name": "1009279",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1009279"
            },
            {
              "name": "1st-class-apop-dos(15314)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15314"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.digiti.be/jeffosz/advisories/1stclasspop3.txt"
            },
            {
              "name": "9794",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/9794"
            },
            {
              "name": "11029",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/11029"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.zone-h.org/advisories/read/id=4047"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-2375",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Buffer overflow in the POP3 server in 1st Class Mail Server 4.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an APOP USER command with a long second parameter (digest)."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "4129",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/4129"
                },
                {
                  "name": "1009279",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1009279"
                },
                {
                  "name": "1st-class-apop-dos(15314)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15314"
                },
                {
                  "name": "http://www.digiti.be/jeffosz/advisories/1stclasspop3.txt",
                  "refsource": "MISC",
                  "url": "http://www.digiti.be/jeffosz/advisories/1stclasspop3.txt"
                },
                {
                  "name": "9794",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/9794"
                },
                {
                  "name": "11029",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/11029"
                },
                {
                  "name": "http://www.zone-h.org/advisories/read/id=4047",
                  "refsource": "MISC",
                  "url": "http://www.zone-h.org/advisories/read/id=4047"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-2375",
        "datePublished": "2005-08-16T04:00:00.000Z",
        "dateReserved": "2005-08-16T00:00:00.000Z",
        "dateUpdated": "2024-08-08T01:22:13.769Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-2375 (GCVE-0-2004-2375)

    Vulnerability from nvd – Published: 2005-08-16 04:00 – Updated: 2024-08-08 01:22
    VLAI
    Summary
    Buffer overflow in the POP3 server in 1st Class Mail Server 4.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an APOP USER command with a long second parameter (digest).
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://www.osvdb.org/4129 vdb-entryx_refsource_OSVDB
    http://securitytracker.com/id?1009279 vdb-entryx_refsource_SECTRACK
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.digiti.be/jeffosz/advisories/1stclassp… x_refsource_MISC
    http://www.securityfocus.com/bid/9794 vdb-entryx_refsource_BID
    http://secunia.com/advisories/11029 third-party-advisoryx_refsource_SECUNIA
    http://www.zone-h.org/advisories/read/id=4047 x_refsource_MISC
    Date Public
    2004-02-25 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T01:22:13.769Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "4129",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/4129"
              },
              {
                "name": "1009279",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/id?1009279"
              },
              {
                "name": "1st-class-apop-dos(15314)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15314"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.digiti.be/jeffosz/advisories/1stclasspop3.txt"
              },
              {
                "name": "9794",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/9794"
              },
              {
                "name": "11029",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/11029"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://www.zone-h.org/advisories/read/id=4047"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-02-25T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Buffer overflow in the POP3 server in 1st Class Mail Server 4.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an APOP USER command with a long second parameter (digest)."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-10T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "4129",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/4129"
            },
            {
              "name": "1009279",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/id?1009279"
            },
            {
              "name": "1st-class-apop-dos(15314)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15314"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.digiti.be/jeffosz/advisories/1stclasspop3.txt"
            },
            {
              "name": "9794",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/9794"
            },
            {
              "name": "11029",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/11029"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://www.zone-h.org/advisories/read/id=4047"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-2375",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Buffer overflow in the POP3 server in 1st Class Mail Server 4.0 allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code via an APOP USER command with a long second parameter (digest)."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "4129",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/4129"
                },
                {
                  "name": "1009279",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/id?1009279"
                },
                {
                  "name": "1st-class-apop-dos(15314)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15314"
                },
                {
                  "name": "http://www.digiti.be/jeffosz/advisories/1stclasspop3.txt",
                  "refsource": "MISC",
                  "url": "http://www.digiti.be/jeffosz/advisories/1stclasspop3.txt"
                },
                {
                  "name": "9794",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/9794"
                },
                {
                  "name": "11029",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/11029"
                },
                {
                  "name": "http://www.zone-h.org/advisories/read/id=4047",
                  "refsource": "MISC",
                  "url": "http://www.zone-h.org/advisories/read/id=4047"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-2375",
        "datePublished": "2005-08-16T04:00:00.000Z",
        "dateReserved": "2005-08-16T00:00:00.000Z",
        "dateUpdated": "2024-08-08T01:22:13.769Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-2447 (GCVE-0-2004-2447)

    Vulnerability from nvd – Published: 2005-08-20 04:00 – Updated: 2024-08-08 01:29
    VLAI
    Summary
    Cross-site scripting (XSS) vulnerability in 1st Class Mail Server 4.01 allows remote attackers to inject arbitrary web script or HTML via the Mailbox parameter to (1) viewmail.tagz, (2) the index script under /user/, (3) members.tagz, (4) general.tagz, (5) advanced.tagz, or (6) list.tagz.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    http://securitytracker.com/alerts/2004/Apr/1009705.html vdb-entryx_refsource_SECTRACK
    http://www.osvdb.org/5017 vdb-entryx_refsource_OSVDB
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://www.osvdb.org/5014 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/5013 vdb-entryx_refsource_OSVDB
    http://www.osvdb.org/5015 vdb-entryx_refsource_OSVDB
    http://secunia.com/advisories/11330 third-party-advisoryx_refsource_SECUNIA
    http://www.osvdb.org/5016 vdb-entryx_refsource_OSVDB
    http://www.securityfocus.com/bid/10089 vdb-entryx_refsource_BID
    http://www.osvdb.org/5012 vdb-entryx_refsource_OSVDB
    Date Public
    2004-04-08 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T01:29:13.541Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1009705",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/alerts/2004/Apr/1009705.html"
              },
              {
                "name": "5017",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/5017"
              },
              {
                "name": "1stclass-multiple-xss(15815)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15815"
              },
              {
                "name": "5014",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/5014"
              },
              {
                "name": "5013",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/5013"
              },
              {
                "name": "5015",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/5015"
              },
              {
                "name": "11330",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/11330"
              },
              {
                "name": "5016",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/5016"
              },
              {
                "name": "10089",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/10089"
              },
              {
                "name": "5012",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/5012"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-04-08T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Cross-site scripting (XSS) vulnerability in 1st Class Mail Server 4.01 allows remote attackers to inject arbitrary web script or HTML via the Mailbox parameter to (1) viewmail.tagz, (2) the index script under /user/, (3) members.tagz, (4) general.tagz, (5) advanced.tagz, or (6) list.tagz."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-10T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "1009705",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/alerts/2004/Apr/1009705.html"
            },
            {
              "name": "5017",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/5017"
            },
            {
              "name": "1stclass-multiple-xss(15815)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15815"
            },
            {
              "name": "5014",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/5014"
            },
            {
              "name": "5013",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/5013"
            },
            {
              "name": "5015",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/5015"
            },
            {
              "name": "11330",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/11330"
            },
            {
              "name": "5016",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/5016"
            },
            {
              "name": "10089",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/10089"
            },
            {
              "name": "5012",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/5012"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-2447",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Cross-site scripting (XSS) vulnerability in 1st Class Mail Server 4.01 allows remote attackers to inject arbitrary web script or HTML via the Mailbox parameter to (1) viewmail.tagz, (2) the index script under /user/, (3) members.tagz, (4) general.tagz, (5) advanced.tagz, or (6) list.tagz."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1009705",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/alerts/2004/Apr/1009705.html"
                },
                {
                  "name": "5017",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/5017"
                },
                {
                  "name": "1stclass-multiple-xss(15815)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15815"
                },
                {
                  "name": "5014",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/5014"
                },
                {
                  "name": "5013",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/5013"
                },
                {
                  "name": "5015",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/5015"
                },
                {
                  "name": "11330",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/11330"
                },
                {
                  "name": "5016",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/5016"
                },
                {
                  "name": "10089",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/10089"
                },
                {
                  "name": "5012",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/5012"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-2447",
        "datePublished": "2005-08-20T04:00:00.000Z",
        "dateReserved": "2005-08-20T00:00:00.000Z",
        "dateUpdated": "2024-08-08T01:29:13.541Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }

    CVE-2004-2446 (GCVE-0-2004-2446)

    Vulnerability from nvd – Published: 2005-08-20 04:00 – Updated: 2024-08-08 01:29
    VLAI
    Summary
    Directory traversal vulnerability in 1st Class Mail Server 4.01 allows remote attackers to read arbitrary files via a ".." (dot dot) sequences in unknown vectors.
    Severity
    No CVSS data available.
    CWE
    • n/a
    Assigner
    References
    URL Tags
    https://exchange.xforce.ibmcloud.com/vulnerabilit… vdb-entryx_refsource_XF
    http://securitytracker.com/alerts/2004/Apr/1009705.html vdb-entryx_refsource_SECTRACK
    http://secunia.com/advisories/11330 third-party-advisoryx_refsource_SECUNIA
    http://members.lycos.co.uk/r34ct/main/1st%20Class… x_refsource_MISC
    http://www.osvdb.org/5011 vdb-entryx_refsource_OSVDB
    http://www.securityfocus.com/bid/10089 vdb-entryx_refsource_BID
    Date Public
    2004-04-08 00:00
    Show details on NVD website

    {
      "containers": {
        "adp": [
          {
            "providerMetadata": {
              "dateUpdated": "2024-08-08T01:29:13.266Z",
              "orgId": "af854a3a-2127-422b-91ae-364da2661108",
              "shortName": "CVE"
            },
            "references": [
              {
                "name": "1stclass-dotdot-directory-traversal(15812)",
                "tags": [
                  "vdb-entry",
                  "x_refsource_XF",
                  "x_transferred"
                ],
                "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15812"
              },
              {
                "name": "1009705",
                "tags": [
                  "vdb-entry",
                  "x_refsource_SECTRACK",
                  "x_transferred"
                ],
                "url": "http://securitytracker.com/alerts/2004/Apr/1009705.html"
              },
              {
                "name": "11330",
                "tags": [
                  "third-party-advisory",
                  "x_refsource_SECUNIA",
                  "x_transferred"
                ],
                "url": "http://secunia.com/advisories/11330"
              },
              {
                "tags": [
                  "x_refsource_MISC",
                  "x_transferred"
                ],
                "url": "http://members.lycos.co.uk/r34ct/main/1st%20Class%20mail%20server%204.01.txt"
              },
              {
                "name": "5011",
                "tags": [
                  "vdb-entry",
                  "x_refsource_OSVDB",
                  "x_transferred"
                ],
                "url": "http://www.osvdb.org/5011"
              },
              {
                "name": "10089",
                "tags": [
                  "vdb-entry",
                  "x_refsource_BID",
                  "x_transferred"
                ],
                "url": "http://www.securityfocus.com/bid/10089"
              }
            ],
            "title": "CVE Program Container"
          }
        ],
        "cna": {
          "affected": [
            {
              "product": "n/a",
              "vendor": "n/a",
              "versions": [
                {
                  "status": "affected",
                  "version": "n/a"
                }
              ]
            }
          ],
          "datePublic": "2004-04-08T00:00:00.000Z",
          "descriptions": [
            {
              "lang": "en",
              "value": "Directory traversal vulnerability in 1st Class Mail Server 4.01 allows remote attackers to read arbitrary files via a \"..\" (dot dot) sequences in unknown vectors."
            }
          ],
          "problemTypes": [
            {
              "descriptions": [
                {
                  "description": "n/a",
                  "lang": "en",
                  "type": "text"
                }
              ]
            }
          ],
          "providerMetadata": {
            "dateUpdated": "2017-07-10T14:57:01.000Z",
            "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
            "shortName": "mitre"
          },
          "references": [
            {
              "name": "1stclass-dotdot-directory-traversal(15812)",
              "tags": [
                "vdb-entry",
                "x_refsource_XF"
              ],
              "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15812"
            },
            {
              "name": "1009705",
              "tags": [
                "vdb-entry",
                "x_refsource_SECTRACK"
              ],
              "url": "http://securitytracker.com/alerts/2004/Apr/1009705.html"
            },
            {
              "name": "11330",
              "tags": [
                "third-party-advisory",
                "x_refsource_SECUNIA"
              ],
              "url": "http://secunia.com/advisories/11330"
            },
            {
              "tags": [
                "x_refsource_MISC"
              ],
              "url": "http://members.lycos.co.uk/r34ct/main/1st%20Class%20mail%20server%204.01.txt"
            },
            {
              "name": "5011",
              "tags": [
                "vdb-entry",
                "x_refsource_OSVDB"
              ],
              "url": "http://www.osvdb.org/5011"
            },
            {
              "name": "10089",
              "tags": [
                "vdb-entry",
                "x_refsource_BID"
              ],
              "url": "http://www.securityfocus.com/bid/10089"
            }
          ],
          "x_legacyV4Record": {
            "CVE_data_meta": {
              "ASSIGNER": "cve@mitre.org",
              "ID": "CVE-2004-2446",
              "STATE": "PUBLIC"
            },
            "affects": {
              "vendor": {
                "vendor_data": [
                  {
                    "product": {
                      "product_data": [
                        {
                          "product_name": "n/a",
                          "version": {
                            "version_data": [
                              {
                                "version_value": "n/a"
                              }
                            ]
                          }
                        }
                      ]
                    },
                    "vendor_name": "n/a"
                  }
                ]
              }
            },
            "data_format": "MITRE",
            "data_type": "CVE",
            "data_version": "4.0",
            "description": {
              "description_data": [
                {
                  "lang": "eng",
                  "value": "Directory traversal vulnerability in 1st Class Mail Server 4.01 allows remote attackers to read arbitrary files via a \"..\" (dot dot) sequences in unknown vectors."
                }
              ]
            },
            "problemtype": {
              "problemtype_data": [
                {
                  "description": [
                    {
                      "lang": "eng",
                      "value": "n/a"
                    }
                  ]
                }
              ]
            },
            "references": {
              "reference_data": [
                {
                  "name": "1stclass-dotdot-directory-traversal(15812)",
                  "refsource": "XF",
                  "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/15812"
                },
                {
                  "name": "1009705",
                  "refsource": "SECTRACK",
                  "url": "http://securitytracker.com/alerts/2004/Apr/1009705.html"
                },
                {
                  "name": "11330",
                  "refsource": "SECUNIA",
                  "url": "http://secunia.com/advisories/11330"
                },
                {
                  "name": "http://members.lycos.co.uk/r34ct/main/1st%20Class%20mail%20server%204.01.txt",
                  "refsource": "MISC",
                  "url": "http://members.lycos.co.uk/r34ct/main/1st%20Class%20mail%20server%204.01.txt"
                },
                {
                  "name": "5011",
                  "refsource": "OSVDB",
                  "url": "http://www.osvdb.org/5011"
                },
                {
                  "name": "10089",
                  "refsource": "BID",
                  "url": "http://www.securityfocus.com/bid/10089"
                }
              ]
            }
          }
        }
      },
      "cveMetadata": {
        "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
        "assignerShortName": "mitre",
        "cveId": "CVE-2004-2446",
        "datePublished": "2005-08-20T04:00:00.000Z",
        "dateReserved": "2005-08-20T00:00:00.000Z",
        "dateUpdated": "2024-08-08T01:29:13.266Z",
        "state": "PUBLISHED"
      },
      "dataType": "CVE_RECORD",
      "dataVersion": "5.1"
    }