49 matches found
EUVD-2021-24557
Malware in sbrugna...
EUVD-2005-3531
Malware in sbrugna...
EUVD-2005-2152
Malware in sbrugna...
CVE-2021-38084
An issue was discovered in the POP3 component of Courier Mail Server before 1.1.5. Meddler-in-the-middle attackers can pipeline commands after the POP3 STLS command, injecting plaintext commands into an encrypted user session...
Linux Distros Unpatched Vulnerability : CVE-2021-38084
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in the POP3 component of Courier Mail Server before 1.1.5. Meddler-in-the-middle attackers can pipeline commands after the POP3 STLS...
SUSE CVE-2005-3532
authpam.c in courier-authdaemon for Courier Mail Server 0.37.3 through 0.52.1, when using pamtally, does not call the pamacctmgmt function to verify that access should be granted, which allows attackers to authenticate to the server using accounts that have been disabled...
SUSE CVE-2021-38084
An issue was discovered in the POP3 component of Courier Mail Server before 1.1.5. Meddler-in-the-middle attackers can pipeline commands after the POP3 STLS command, injecting plaintext commands into an encrypted user session...
Ubuntu: Security Advisory (USN-174-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Courier Mail Server Injection Vulnerability
Courier Mail Server is an application. A courier mail server. A security vulnerability exists in versions of Courier Mail Server prior to 1.1.5, which can be exploited by attackers to enter malicious commands after POP3 STLS commands and inject malicious commands into an encrypted user session...
CVE-2021-38084
An issue was discovered in the POP3 component of Courier Mail Server before 1.1.5. Meddler-in-the-middle attackers can pipeline commands after the POP3 STLS command, injecting plaintext commands into an encrypted user session...
DEBIAN-CVE-2021-38084
An issue was discovered in the POP3 component of Courier Mail Server before 1.1.5. Meddler-in-the-middle attackers can pipeline commands after the POP3 STLS command, injecting plaintext commands into an encrypted user session...
CVE-2021-38084
An issue was discovered in the POP3 component of Courier Mail Server before 1.1.5. Meddler-in-the-middle attackers can pipeline commands after the POP3 STLS command, injecting plaintext commands into an encrypted user session...
CVE-2021-38084
An issue was discovered in the POP3 component of Courier Mail Server before 1.1.5. Meddler-in-the-middle attackers can pipeline commands after the POP3 STLS command, injecting plaintext commands into an encrypted user session...
Session fixation
An issue was discovered in the POP3 component of Courier Mail Server before 1.1.5. Meddler-in-the-middle attackers can pipeline commands after the POP3 STLS command, injecting plaintext commands into an encrypted user session...
UBUNTU-CVE-2021-38084
An issue was discovered in the POP3 component of Courier Mail Server before 1.1.5. Meddler-in-the-middle attackers can pipeline commands after the POP3 STLS command, injecting plaintext commands into an encrypted user session...
CVE-2021-38084
CVE-2021-38084 affects the Courier Mail Server POP3 component prior to 1.1.5. A meddler-in-the-middle can pipeline commands after the POP3 STLS command, injecting plaintext commands into an encrypted user session, with impact on confidentiality, integrity, and availability. The available sources ...
CVE-2021-38084
An issue was discovered in the POP3 component of Courier Mail Server before 1.1.5. Meddler-in-the-middle attackers can pipeline commands after the POP3 STLS command, injecting plaintext commands into an encrypted user session...
Courier Mail Server 注入漏洞
Courier Mail Server is an application. A courier mail server. A security vulnerability exists in versions of Courier Mail Server prior to 1.1.5, which can be exploited by attackers to enter malicious commands after POP3 STLS commands and inject malicious commands into an encrypted user session...
Courier Mail Server Memory Corruption Vulnerability
Courier Mail Server is a mail transfer proxy server that provides ESMTP, IMAP, POP3, SMAP, webmail and mailing list services. A memory corruption vulnerability exists in Courier Mail Server, which allows remote attackers to exploit the vulnerability to submit a special request that could crash th...
Maildrop: privilege escalation
Background maildrop is the mail filter/mail delivery agent that is used by the Courier Mail Server. Description Christoph Anton Mitterer reported that maildrop does not properly drop its privileges when run as root. Impact A local attacker could create a specially crafted .mailfilter file, possib...