Denial of service vulnerability in IceWarp Mail ServerID: oval:org.secpod.oval:def:2517 | Date: (C)2011-10-13 (M)2022-10-10 |
Class: VULNERABILITY | Family: windows |
The host is installed with IceWarp Mail Server before 10.3.3 and is prone to denial of service vulnerability. A flaw is present in the application which is caused by an error in the XML external entity. Successful exploitation allows remote attackers to read arbitrary files, and possibly send HTTP requests to intranet servers.
Platform: |
Microsoft Windows Server 2012 R2 |
Microsoft Windows 8.1 |
Microsoft Windows 2000 |
Microsoft Windows 7 |
Microsoft Windows Server 2003 |
Microsoft Windows Server 2008 |
Microsoft Windows Server 2008 R2 |
Microsoft Windows Vista |
Microsoft Windows XP |
Microsoft Windows 8 |
Microsoft Windows 10 |
Microsoft Windows Server 2016 |
Microsoft Windows Server 2012 |
Product: |
IceWarp Mail Server |