CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Metasploit•added 2009/09/12 10:56 a.m.•50 views

Sendmail SMTP Address prescan Memory Corruption

This is a proof of concept denial of service module for Sendmail versions 8.12.8 and earlier. The vulnerability is within the prescan method when parsing SMTP headers. Due to the prescan function, only 0x5c and 0x00 bytes can be used, limiting the likelihood for arbitrary code execution. This...

10CVSS7.4AI score0.60185EPSS

Exploits3

myhack58•added 2009/08/15 12:0 a.m.•32 views

*nux how to create a backdoor-a vulnerability warning-the black bar safety net

Painstakingly（or ease of obtaining root after, Of course, want to long-term holding. To be later used to it. d0ing what u want t0 d0 : the traditional method is to build a back doorbackd00r. Even if the invasion is found, the better（advanced）back door still be able to make you again a relaxing...

7.1AI score

myhack58•added 2009/07/06 12:0 a.m.•20 views

All PEAR Mail functions contain an arbitrary file write vulnerability-vulnerability warning-the black bar safety net

出现问题的地方位于 Sendmail.php ...... if ! isset$from return PEAR::raiseError'No from address given.'; elseif strpos$from, ' ' !== false || strpos$from, ';' !== false || strpos$from, '&' !== false || strpos$from, "' !== false return PEAR::raiseError'From address specified with dangerous characters.';...

OpenVAS•added 2009/06/03 12:0 a.m.•9 views

Solaris Update for sendmail 114137-10

Check for the Version of sendmail OpenVAS Vulnerability Test Solaris Update for sendmail 114137-10 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

OpenVAS•added 2009/06/03 12:0 a.m.•7 views

Solaris Update for sendmail 110616-18

Check for the Version of sendmail OpenVAS Vulnerability Test Solaris Update for sendmail 110616-18 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

OpenVAS•added 2009/06/03 12:0 a.m.•6 views

Solaris Update for sendmail 110616-18

OpenVAS•added 2009/06/03 12:0 a.m.•19 views

Solaris Update for sendmail 113575-11

Check for the Version of sendmail OpenVAS Vulnerability Test Solaris Update for sendmail 113575-11 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

0.2AI score

OpenVAS•added 2009/06/03 12:0 a.m.•6 views

Solaris Update for sendmail 114137-10

OpenVAS•added 2009/06/03 12:0 a.m.•12 views

Solaris Update for sendmail 110615-18

Check for the Version of sendmail OpenVAS Vulnerability Test Solaris Update for sendmail 110615-18 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...

OpenVAS•added 2009/06/03 12:0 a.m.•7 views

Solaris Update for sendmail 113575-11

OpenVAS•added 2009/06/03 12:0 a.m.•10 views

Solaris Update for sendmail 110615-18

0.2AI score

Exploit DB•added 2009/05/27 12:0 a.m.•43 views

Sendmail 8.12.x - 'X-header' Remote Heap Buffer Overflow (PoC)

source: https://www.securityfocus.com/bid/34944/info Sendmail is prone to a heap-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied input before copying it to an insufficiently sized buffer. Successfully exploiting this issue may allow an attacker to...

7AI score

exploitpack•added 2009/05/27 12:0 a.m.•31 views

Sendmail 8.12.x - X-header Remote Heap Buffer Overflow (PoC)

Sendmail 8.12.x - X-header Remote Heap Buffer Overflow PoC source: https://www.securityfocus.com/bid/34944/info Sendmail is prone to a heap-based buffer-overflow vulnerability because it fails to adequately bounds-check user-supplied input before copying it to an insufficiently sized buffer...

0.7AI score

Tenable Nessus•added 2009/05/24 12:0 a.m.•35 views

Sendmail < 8.13.2 Mail X-Header Handling Remote Overflow

The remote host is running a version of the Sendmail mail server earlier than 8.13.2. Such versions are reportedly affected by a remote buffer overflow vulnerability. An attacker could leverage this flaw to execute arbitrary code with the privileges of the affected application. C Tenable Network...

5CVSS5.9AI score0.12614EPSS

Exploits1References3

OpenVAS•added 2009/05/20 12:0 a.m.•12 views

Fedora Core 10 FEDORA-2009-5002 (drupal)

The remote host is missing an update to drupal announced via advisory FEDORA-2009-5002. OpenVAS Vulnerability Test $Id: fcore20095002.nasl 6624 2017-07-10 06:11:55Z cfischer $ Description: Auto-generated from advisory FEDORA-2009-5002 drupal Authors: Thomas Reinke Copyright: Copyright c 2009 E-So...

seebug.org•added 2009/05/17 12:0 a.m.•64 views

Sendmail X-header头远程堆溢出漏洞

BUGTRAQ ID: 34944 CVECAN ID: CVE-2009-1490 Sendmail是很多大型站点都在使用的邮件传输代理（MTA）。如果远程攻击者向Sendmail发送了包含有超长X-header头的畸形报文的话，就可能触发堆溢出，导致拒绝服务或执行任意代码。 Sendmail 8.13.2 Sendmail Consortium ------------------- 目前厂商已经发布了升级补丁以修复这个安全问题，请到厂商的主页下载： http://www.sendmail.org/releases/8.13.2 $ telnet example.com 25...

5CVSS6.4AI score0.12614EPSS

Exploits1

UbuntuCve•added 2009/05/15 3:30 p.m.•28 views

CVE-2009-0688

Multiple buffer overflows in the CMU Cyrus SASL library before 2.1.23 might allow remote attackers to execute arbitrary code or cause a denial of service application crash via strings that are used as input to the saslencode64 function in lib/saslutil.c...

7.5CVSS6.4AI score0.08206EPSS