6490 matches found
Дырка в GroupWise client
Пользователь может получить доступ к файлам, доступ к которым запрещен системной политикой используя файлы в качестве вложения в письмо...
CVE-2000-0929
CVE-2000-0929 concerns Microsoft Windows Media Player 7. The vulnerability arises from an embedded OCX control used in RTf-enabled email clients that is not closed properly, allowing denial of service. Affected product is Windows Media Player 7 (RTF-enabled email contexts mentioned). Root cause: ...
CVE-2000-0929
Microsoft Windows Media Player 7 allows attackers to cause a denial of service in RTF-enabled email clients via an embedded OCX control that is not closed properly, aka the "OCX Attachment" vulnerability...
Microsoft Outlook 2000 098 0Express 5.5 - Concealed Attachment
Microsoft Outlook 2000 098 0Express 5.5 - Concealed Attachment source: https://www.securityfocus.com/bid/2260/info Versions of MS Outlook are vulnerable to receiving a hidden, potentially hostile attachment. An arbitrary string of characters, supplied by the sender to the 'subject:' field, will b...
Microsoft Outlook 2000 0/98 0/Express 5.5 - Concealed Attachment
source: https://www.securityfocus.com/bid/2260/info Versions of MS Outlook are vulnerable to receiving a hidden, potentially hostile attachment. An arbitrary string of characters, supplied by the sender to the 'subject:' field, will be received and interpreted by vulnerable versions of Outlook as...
The Bat! version 1.49
We would like to inform you that version 1.49 is now released. It contains some important security fixes so we recommend you to download it as soon as you can if you use The Bat! as your primary e-mail client. What's new in The Bat! 1.49? Legend: since 1.48 + Added feature Improved/changed featur...
CVE-2000-0929
Microsoft Windows Media Player 7 allows attackers to cause a denial of service in RTF-enabled email clients via an embedded OCX control that is not closed properly, aka the "OCX Attachment" vulnerability...
Дырка в WhoWhere Webmail (comm.lycos.com, angelfire.com, eudoramail.com)
Можно угадать имя файла с вложением на сервере...
Remote File Attachment Theft via comm.lycos.com,angelfire.com, eudoramail.com
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Date Published: November 28, 2000 Title: Remote File Attachment Theft via comm.lycos.com,angelfire.com, eudoramail.com Class: Access Validation Error Remotely Exploitable: Yes Vulnerability Description: WebMail possibly WhoWhere.com software as...
InoculateIT AV Option for MS Exchange Server
The scenario is two EX Srvrs, two different organizations and different sites, both have CA's "InoculateIT AV Option for MS Exchange Server". MS IMC the EX SMTP gateway will be used to send messages between the EX Srvrs. Where the Agent fails: 1. If a message is sent from one EX to another using...
Computer Associates InoculateIT 4.53 - Microsoft Exchange Agent
Computer Associates InoculateIT 4.53 - Microsoft Exchange Agent source : https://www.securityfocus.com/bid/1935/info InoculateIT 4.52 is a popular antivirus agent for Microsoft Exchange Servers. A vulnerability exists in the InoculateIT Agent for MS Exchange that can allow a local attacker to pas...
Computer Associates InoculateIT 4.53 - Microsoft Exchange Agent
source : https://www.securityfocus.com/bid/1935/info InoculateIT 4.52 is a popular antivirus agent for Microsoft Exchange Servers. A vulnerability exists in the InoculateIT Agent for MS Exchange that can allow a local attacker to pass a virus through both the agent and MS Exchange Server. There a...
CVE-2000-0481
CVE-2000-0481 describes a buffer overflow in KDE Kmail triggered by an attachment with a long file name, allowing a remote attacker to cause a denial of service. The NVD entry lists a Network-attack vector, low complexity, no authentication, with Availability impact described as Partial. The CVSS...
Security Bulletin (MS00-068)
Microsoft Security Bulletin MS00-068 - -------------------------------------- Patch Available for "OCX Attachment" Vulnerability Originally posted: September 26, 2000 Summary ======= Microsoft has released a patch that eliminates a security vulnerability in Microsoftr Windows Media Player WMP 7 b...
Possible Exchange 5.5 Server DoS
exerror.zip This happend early this morning on one of our mailservers running Exchange 5.5 on WinNT4 OP5. Suddenly the Information Store STORE.EXE crashed with a strange error saying something in the way of "Error while processing an email message", restarting both the server and all of Exchange'...
Дырка в MailForm (Credit Card)
Не проверяется запрос пользователя, что позволяет получить любой файл с сервера, прикрепив его к письму...
Очередная дырка в IMAIL
Используя Web-интерефейс можно прикрепить локальный файл с сервера к письму пользователя...
Дырка в Stalker CGI Mail
Макро $File$ и $Attach$ позволяют прикрепить к письму любой файл...
Vulnerability Report On IPSWITCH's IMail
Vulnerability Report On IPSWITCH's IMail Date Published: August 30 2000 Advisory ID: TS003 Bugtraq ID: http://www.securityfocus.com/bid/1617 CVE CAN: None at this time Title: IPSWITCH IMail File Attachment Vulnerability Class: Access Validation Error Remotely Exploitable: Yes Locally Exploitable:...
Ipswitch IMail 6.x - File Attachment
Ipswitch IMail 6.x - File Attachment source: https://www.securityfocus.com/bid/1617/info IPSWITCH ships a product titled IMail, an email server for usage on NT servers serving clients their mail via a web interface. To this end the IMail server provides a web server typically running on port 8383...