Argosoft: Security Vulnerabilities
Cross-site scripting (XSS) vulnerability in ArGoSoft Mail Server Pro 1.8.1.9 allows remote attackers to inject arbitrary web script or HTML via the e-mail message.
CVSS Score
4.3
EPSS Score
0.003
Published
2002-12-31
Directory traversal vulnerability in webmail feature of ArGoSoft Mail Server Plus or Pro 1.8.1.5 and earlier allows remote attackers to read arbitrary files via .. (dot dot) sequences in a URL.
CVSS Score
5.0
EPSS Score
0.065
Published
2002-10-04
ArGoSoft Mail Server 1.8.1.7 and earlier allows a webmail user to cause a denial of service (CPU consumption) by forwarding the email to the user while autoresponse is enabled, which creates an infinite loop.
CVSS Score
5.0
EPSS Score
0.005
Published
2002-10-04
Argosoft FRP server 1.0 allows remote attackers to cause a denial of service, and possibly execute arbitrary commands, via a long string to the (1) USER or (2) CWD commands.
CVSS Score
7.5
EPSS Score
0.026
Published
2001-08-31
ArGoSoft FTP Server 1.2.2.2 uses weak encryption for user passwords, which allows an attacker with access to the password file to gain privileges.
CVSS Score
5.0
EPSS Score
0.018
Published
2001-07-12
ArGoSoft FTP Server 1.2.2.2 allows remote attackers to read arbitrary files and directories by uploading a .lnk (link) file that points to the target file.
CVSS Score
7.5
EPSS Score
0.018
Published
2001-07-01
Page 3