CVE-2023-26432

When adding an external mail account, processing of SMTP "capabilities" responses are not limited to plausible sizes. Attacker with access to a rogue SMTP service could trigger requests that lead to excessive resource usage and eventually service unavailability. We now limit accepted SMTP server...

CVE-2023-26432

When adding an external mail account, processing of SMTP "capabilities" responses are not limited to plausible sizes. Attacker with access to a rogue SMTP service could trigger requests that lead to excessive resource usage and eventually service unavailability. We now limit accepted SMTP server...

CVE-2023-26432

When adding an external mail account, processing of SMTP "capabilities" responses are not limited to plausible sizes. Attacker with access to a rogue SMTP service could trigger requests that lead to excessive resource usage and eventually service unavailability. We now limit accepted SMTP server...

CVE-2023-26432

The CVE-2023-26432 issue affects Open-Xchange OX App Suite, specifically the OXAS-BACKEND SMTP capabilities handling when adding an external mail account. The root cause is processing of SMTP server capabilities not being limited to plausible sizes, enabling an attacker with access to a rogue SMT...

CVE-2022-26432

In mailbox, there is a possible out of bounds write due to a missing bounds check. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation. Patch ID: ALPS07032542; Issue ID: ALPS07032542...

CVE-2022-26432

CVE-2022-26432 affects MediaTek-based devices where a mailbox out-of-bounds write due to a missing bounds check can enable local privilege escalation with System privileges. Public details consistently describe the issue without user interaction; no exploit details are provided in the documents. ...

CVE-2021-26432

CVE-2021-26432 is a remote code execution vulnerability in the Windows Services for NFS ONCRPC XDR Driver. The issue allows an attacker to execute arbitrary code on a vulnerable system via the ONCRPC XDR Driver component, with high impact (C/H/I/A = HIGH) and network access (CVSS scores reflect r...

CVE-2021-26432

creationtimestamp| type| source ---|---|--- 2021-08-11 18:46:50+00:00| seen| https://t.me/truesecator/1993 2023-11-29 05:30:24+00:00| seen| https://t.me/arpsyndicate/671...

KB5005033: Windows 10 Version 2004 / Windows 10 Version 20H2 / Windows 10 Version 21H1 Security Update (August 2021)

The remote Windows host is missing security update 5005033. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2021-26425, CVE-2021-26426, CVE-2021-26431, CVE-2021-34483, CVE-2021-34484,...

KB5005106: Windows 8.1 and Windows Server 2012 R2 Security Update (August 2021)

The remote Windows host is missing security update 5005106 or cumulative update 5005076. It is, therefore, affected by multiple vulnerabilities : - An elevation of privilege vulnerability. An attacker can exploit this to gain elevated privileges. CVE-2021-26425, CVE-2021-26426, CVE-2021-34483,...

KB5005031: Windows 10 Version 1909 Security Update (August 2021)

The remote Windows host is missing security update 5005031. It is, therefore, affected by multiple vulnerabilities : - A remote code execution vulnerability. An attacker can exploit this to bypass authentication and execute unauthorized arbitrary commands. CVE-2021-26424, CVE-2021-26432,...