📦

one_messaging_server

Vendor: sun

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 452 Total Indexed

Avg. EPSS 0.23% Exploit Prob.

Latest CVE CVE-2004-2766 Jan 28

Security Vulnerability Index

Page 1 / 46

4.3 CVSS

CVE-2004-2766

Webmail in Sun ONE Messaging Server 6.1 and iPlanet Messaging Server 5.2 before 5.2hf2.02 allows remote attackers to obtain unspecified "access" to e-mail via a crafted e-mail message, related to a "session hijacking" issue, a different vulnerability than CVE-2005-2022 and CVE-2006-5486.

EPSS: 0.23%

Severity: MEDIUM

Jan 28, 2010

4.3 CVSS

CVE-2004-2765

Cross-site scripting (XSS) vulnerability in Webmail in Sun ONE Messaging Server 6.1 and iPlanet Messaging Server 5.2 before 5.2hf2.02, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via a crafted e-mail message, a different vulnerability than CVE-2005-2022 and CVE-2006-5486.

EPSS: 0.26%

Severity: MEDIUM

Jan 28, 2010

2.1 CVSS

CVE-2006-3159

pipe_master in Sun ONE/iPlanet Messaging Server 5.2 HotFix 1.16 (built May 14 2003) allows local users to read portions of restricted files via a symlink attack on msg.conf in a directory identified by the CONFIGROOT environment variable, which returns the first line of the file in an error message.

EPSS: 0.08%

Severity: LOW

Jun 22, 2006

4.3 CVSS

CVE-2005-2022

Unknown vulnerability in Webmail in iPlanet Messaging Server 5.2 Patch 1 and Sun ONE Messaging Server 6.2 allows remote attackers to execute arbitrary Javascript, possibly due to a cross-site scripting (XSS) vulnerability.

EPSS: 0.35%

Severity: MEDIUM

Jun 17, 2005

Displaying 4 of 452 Total Entries

1 2 3 4 5 ... 46

Total 46 Sections