Authentication Bypass Vulnerability in DMail by DMail Technologies
CVE-2005-1516

Currently unrated

Key Information:

Vendor: Netwin
Status: Dmail
Vendor: CVE Published:; 11 May 2005

What is CVE-2005-1516?

The vulnerability in DMail 3.1a occurs due to improper handling of password hashes by the _cmd_sendlog function in dlist.exe. This flaw allows remote attackers to bypass authentication mechanisms, gaining unauthorized access to the system. Once exploited, attackers can read sensitive log files, potentially exposing confidential data, and even execute malicious commands like shutting down the system, posing severe risks to the integrity and availability of the email service.

References

http://secunia.com/advisories/15242

third-party-advisoryx_refsource_SECUNIA

http://www.security.org.sg/vuln/dmail31a.html

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/20412

vdb-entryx_refsource_XF

Timeline

Vulnerability published
May 11, 2005
Vulnerability Reserved
May 11, 2005

Netwin

What is CVE-2005-1516?

References

Timeline