CVE-2005-2287
CVE-2005-2287 is a medium-severity vulnerability in Softiacom Wmailserver with a CVSS 2.0 base score of 5.0. Its EPSS exploit-prediction score of 57% places it in the 99th percentile, indicating an elevated likelihood of exploitation.
Key facts
- Severity: Medium (CVSS 2.0 base score 5.0)
- EPSS exploit prediction: 57% (99th percentile)
- Actively exploited: Not listed in CISA KEV
- Affected product: Softiacom Wmailserver
- Published:
- Last modified:
Description
SoftiaCom wMailServer 1.0 and 2.0 allows remote attackers to cause a denial of service (application crash) via a large TCP packet with a leading space, possibly triggering a buffer overflow.
Frequently asked questions
- What is CVE-2005-2287?
- SoftiaCom wMailServer 1.0 and 2.0 allows remote attackers to cause a denial of service (application crash) via a large TCP packet with a leading space, possibly triggering a buffer overflow.
- How severe is CVE-2005-2287?
- CVE-2005-2287 has a CVSS 2.0 base score of 5.0, rated medium severity.
- Is CVE-2005-2287 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 57% (99th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2005-2287?
- CVE-2005-2287 primarily affects Softiacom Wmailserver. In total, 2 product configurations (CPEs) are listed as vulnerable; see the affected-products list for the exact versions.
- How do I fix CVE-2005-2287?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- When was CVE-2005-2287 published?
- CVE-2005-2287 was published on 2005-07-18 and last updated on 2026-06-16.
References
Affected products (2)
- cpe:2.3:a:softiacom:wmailserver:1.0:*:*:*:*:*:*:*
- cpe:2.3:a:softiacom:wmailserver:2.0:*:*:*:*:*:*:*
More vulnerabilities in Softiacom Wmailserver
- CVE-2005-2227 — High (CVSS 7.2): Softiacom wMailserver 1.0 stores passwords in plaintext in the Darsite\MAILSRV\Admin key, which allows local users to…