6488 matches found
CVE-2000-0428
CVE-2000-0428 : Buffer overflow in the SMTP gateway of InterScan Virus Wall versions 3.32 and earlier allows remote command execution via a long filename in a uuencoded attachment. Impact is consistent with a HIGH severity (CVSS 2.0: AV:N/AC:L/Au:N/C:C/I:C/A:C). No remediation details are provide...
CVE-2000-0342
Eudora 4.x allows remote attackers to bypass the user warning for executable attachments such as .exe, .com, and .bat by using a .lnk file that refers to the attachment, aka "Stealth Attachment."...
CVE-2000-0428
Buffer overflow in the SMTP gateway for InterScan Virus Wall 3.32 and earlier allows a remote attacker to execute arbitrary commands via a long filename for a uuencoded attachment...
CVE-2000-0415
Buffer overflow in Outlook Express 4.x allows attackers to cause a denial of service via a mail or news message that has a .jpg or .bmp attachment with a long file name...
CVE-2000-0329
A Microsoft ActiveX control allows a remote attacker to execute a malicious cabinet file via an attachment and an embedded script in an HTML mail, aka the "Active Setup Control" vulnerability...
Переполнение кучи в kmail
Длинное имя прикрепленного файла приводит к переполнению динамической памяти, что может быть использовано как DoS атака...
Kmail heap overflow
Hi When a letter sent to a kmail user has an attachment with long about 250 bytes long filename, kmail 1.0.28 segfaults. EIP does NOT get overwritten, only EAX. Dear gurus, is it exploitable? : Byez -- Lez [email protected] http://w3.swi.hu/lezli...
CVE-2000-0415
Buffer overflow in Outlook Express 4.x allows attackers to cause a denial of service via a mail or news message that has a .jpg or .bmp attachment with a long file name...
CVE-2000-0428
Buffer overflow in the SMTP gateway for InterScan Virus Wall 3.32 and earlier allows a remote attacker to execute arbitrary commands via a long filename for a uuencoded attachment...
CVE-2000-0342
Eudora 4.x allows remote attackers to bypass the user warning for executable attachments such as .exe, .com, and .bat by using a .lnk file that refers to the attachment, aka "Stealth Attachment."...
PT-2000-1308 · Qualcomm · Eudora
Name of the Vulnerable Software and Affected Versions: Eudora versions 4.x Description: The issue allows remote attackers to bypass the user warning for executable attachments such as .exe, .com, and .bat by using a .lnk file that refers to the attachment. This is also known as "Stealth...
CVE-2000-0033
CVE-2000-0033 affects InterScan VirusWall SMTP scanner; vulnerability arises from improper handling of messages with malformed attachments. CVSS v2 base score 5.0 (MEDIUM) with no confidentiality/availability impact and partial integrity impact. No remediation details are provided in the documents.
CVE-2000-0036
Outlook Express 5 for Macintosh downloads attachments to HTML mail without prompting the user, aka the "HTML Mail Attachment" vulnerability...
CVE-2000-0036
CVE-2000-0036 involves Outlook Express 5 for Macintosh, where HTML mail can cause attachments to be downloaded without prompting the user. The description identifies the issue as the “HTML Mail Attachment” vulnerability, but the connected documents do not provide technical specifics such as affec...
The Bat! X-BAT-FILES
"The Bat!" by RitLabs is extremely convenient mail agent with a lot of features for Windows platforms. One of "The Bat!" features is storing files attached to e-mail messages apart from messages bodies. In this case "The Bat!" puts attached files in preconfigured folder and removes according MIME...
March 2, 2021, update for Outlook 2013 (KB4493174)
March 2, 2021, update for Outlook 2013 KB4493174 This article describes update 4493174 for Microsoft Outlook 2013 that was released on March 2, 2021. This update also applies to Office Home and Student 2013 RT.Be aware that the update in the Microsoft Download Center applies to the Microsoft...
CVE-2000-0036
Outlook Express 5 for Macintosh downloads attachments to HTML mail without prompting the user, aka the "HTML Mail Attachment" vulnerability...
SCO Unixware 7.07.0.17.17.1.1 - Privileged Program Debugging
SCO Unixware 7.07.0.17.17.1.1 - Privileged Program Debugging // source: https://www.securityfocus.com/bid/869/info Unixware's security model includes the concept of privileges. These can be assigned to processes and allow them to perform tasks that otherwise could only be performed by the root...
CVE-1999-1051
Default configuration in Matt Wright FormHandler.cgi script allows arbitrary directories to be used for attachments, and only restricts access to the /etc/ directory, which allows remote attackers to read arbitrary files via the replymessageattach attachment parameter...
Matt Wright - FormHandler.cgi 2.0 Reply Attachment
Matt Wright - FormHandler.cgi 2.0 Reply Attachment source: https://www.securityfocus.com/bid/799/info Any file that the FormHandler.cgi has read access to the cgi is typically run as user 'nobody' on Unix systems can be specified as an attachment in a reply email. This could allow an attacker to...