DList (dlist.exe) in DMail 3.1a allows remote attackers to bypass authentication, read log files, and shutdown the system via a sendlog command with an incorrect password hash, which is not properly handled by the _cmd_sendlog function.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-05-11T04:00:00

Updated: 2024-08-07T21:51:50.279Z

Reserved: 2005-05-11T00:00:00

Link: CVE-2005-1516

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2005-05-11T04:00:00.000

Modified: 2017-07-11T01:32:41.047

Link: CVE-2005-1516

cve-icon Redhat

No data.