CVE-2005-1516

Name of the Vulnerable Software and Affected Versions DMail version 3.1a

Description The issue allows remote attackers to bypass authentication, read log files, and shutdown the system. This is achieved by sending a sendlog command with an incorrect password hash, which is not properly handled by the cmd sendlog function.

Recommendations For DMail version 3.1a, consider disabling the sendlog command or restricting access to the cmd sendlog function until a patch is available to properly handle incorrect password hashes and prevent unauthorized actions.