Vulnerability Details CVE-2004-2495
The (1) Webmail, (2) admin, and (3) SMTP services in Ability Mail Server 1.18 allow remote attackers to cause a denial of service (CPU consumption) via a large number of simultaneous connections to the service.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.017
EPSS Ranking 81.3%
CVSS Severity
CVSS v2 Score 7.8
References
- http://members.lycos.co.uk/r34ct/main/Ability_mail_server_1.18.txt
- http://secunia.com/advisories/12039
- http://securitytracker.com/id?1010672
- http://www.osvdb.org/7719
- http://www.securityfocus.com/bid/10695
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16677
- http://members.lycos.co.uk/r34ct/main/Ability_mail_server_1.18.txt
- http://secunia.com/advisories/12039
- http://securitytracker.com/id?1010672
- http://www.osvdb.org/7719
- http://www.securityfocus.com/bid/10695
- https://exchange.xforce.ibmcloud.com/vulnerabilities/16677
Products affected by CVE-2004-2495
-
cpe:2.3:a:code-crafters:ability_mail_server:1.18