AI Score
Confidence
Low
EPSS
Percentile
82.0%
DList (dlist.exe) in DMail 3.1a allows remote attackers to bypass authentication, read log files, and shutdown the system via a sendlog command with an incorrect password hash, which is not properly handled by the _cmd_sendlog function.
secunia.com/advisories/15242
www.security.org.sg/vuln/dmail31a.html
www.securityfocus.com/bid/13497
exchange.xforce.ibmcloud.com/vulnerabilities/20412