Every CVE whose affected-product data names Netwin Dmail, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2000-0490 — CVSS 10.0 (critical): Buffer overflow in the NetWin DSMTP 2.7q in the NetWin dmail package allows remote attackers to execute arbitrary commands via a long ETRN…
CVE-2001-1355 — CVSS 10.0 (critical): Buffer overflows in NetWin Authentication Module (NWAuth) 3.0b and earlier, as implemented in DMail, SurgeFTP, and possibly other packages…
CVE-2000-0422 — CVSS 7.5 (high): Buffer overflow in Netwin DMailWeb CGI program allows remote attackers to execute arbitrary commands via a long utoken parameter.
CVE-2005-1478 — CVSS 7.5 (high): Format string vulnerability in dSMTP (dsmtp.exe) in DMail 3.1a allows remote attackers to execute arbitrary code via format string…
CVE-2005-1516 — CVSS 7.5 (high): DList (dlist.exe) in DMail 3.1a allows remote attackers to bypass authentication, read log files, and shutdown the system via a sendlog…
CVE-2001-1354 — CVSS 4.6 (medium): NetWin Authentication module (NWAuth) 2.0 and 3.0b, as implemented in SurgeFTP, DMail, and possibly other packages, uses weak password…