47 matches found
CVE-2018-6596
CVE-2018-6596 affects Anymail (django-anymail) webhooks/base.py, where a timing attack on the WEBHOOK_AUTHORIZATION secret can let remote attackers post arbitrary email tracking events. Affected versions are before 1.2.1. Remediation as per sources: upgrade to Django-Anymail 1.2.1 or later; Debia...
CVE-2016-6826
Huawei AnyMail before 2.6.0301.0060 allows remote attackers to cause a denial of service application crash via a crafted compressed email attachment...
CVE-2016-6826
Huawei AnyMail before 2.6.0301.0060 allows remote attackers to cause a denial of service application crash via a crafted compressed email attachment...
Code injection
Huawei AnyMail before 2.6.0301.0060 allows remote attackers to cause a denial of service application crash via a crafted compressed email attachment...
CVE-2016-6826
Huawei AnyMail before 2.6.0301.0060 allows remote attackers to cause a denial of service application crash via a crafted compressed email attachment...
CVE-2016-6826
CVE-2016-6826 affects Huawei AnyMail prior to 2.6.0301.0060. The issue is an improper input validation when opening compressed email attachments, enabling remote attackers to cause an application crash (denial of service). The available connected documents confirm the vulnerable component and the...
Security Advisory - Improper Input Validation Vulnerability in AnyMail
Huawei AnyMail has an improper input validation vulnerability when opening compressed email attachments. Successful exploit could cause AnyMail to crash and exit. Vulnerability ID: HWPSIRT-2016-06099 This vulnerability has been assigned Common Vulnerabilities and Exposures CVE ID: CVE-2016-6826...