266 matches found
CVE-2016-4351
SQL injection vulnerability in the authentication functionality in Trend Micro Email Encryption Gateway TMEEG 5.5 before build 1107 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
Sql injection
SQL injection vulnerability in the authentication functionality in Trend Micro Email Encryption Gateway TMEEG 5.5 before build 1107 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
CVE-2016-4351
SQL injection vulnerability in the authentication functionality in Trend Micro Email Encryption Gateway TMEEG 5.5 before build 1107 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
CVE-2016-4351
Trend Micro Email Encryption Gateway (TMEEG) 5.5 before build 1107 is affected by CVE-2016-4351, a SQL injection in the authentication functionality that allows remote attackers to execute arbitrary SQL commands via unspecified vectors. Public disclosures (CNVD, NVD, CVE) describe authentication ...
Trend Micro Mail Encryption Gateway SQL Injection Remote Code Execution Vulnerability
This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of Trend Micro Email Encryption Gateway. Authentication is not required to exploit this vulnerability. The specific flaw exists within the authentication functionality. The issue lies in the failure t...
5 Things Google has Done for Gmail Privacy and Security
Over the past few years, Google has increasingly improved the online security and protections of its Gmail users. Besides two-factor authentication and HTTPS, Google has added new tools and features to Gmail that ensures users security and privacy, preventing cyber criminals and intelligence...
GnuPG Email Encryption Project Relies on 'Werner Koch', and He is Running Out of Funds
Werner Koch, the man who authored the free email encryption software, is running out of funding to continue the development of his crucial open-source GNU Privacy Guard GnuPG encryption tools.The code works on plenty of operating systems from Linux and FreeBSD to Windows and OS X. The popular Gnu...
Symantec Encryption Management Server < 3.2.0 MP6 - Remote Command Injection Exploit
Symantec Encryption Management Server versions prior to 3.2.0 MP6 suffers from a remote command injection vulnerability. Title: Symantec Encryption Management Server - Remote Command Injection Vendor: Symantec Affected Product: Symantec Encryption Gateway Affected Versions: 3.2.0 MP6 Product...
Symantec Encryption Management Server 3.2.0 MP6 - Remote Command Injection
Symantec Encryption Management Server 3.2.0 MP6 - Remote Command Injection Vantage Point Security Advisory 2014-007 ======================================== Title: Symantec Encryption Management Server - Remote Command Injection ID: VP-2014-007 Vendor: Symantec Affected Product: Symantec Encrypti...
Symantec Encryption Management Server < 3.2.0 MP6 - Remote Command Injection
Vantage Point Security Advisory 2014-007 ======================================== Title: Symantec Encryption Management Server - Remote Command Injection ID: VP-2014-007 Vendor: Symantec Affected Product: Symantec Encryption Gateway Affected Versions: 3.2.0 MP6 Product Website:...
CVE-2014-5369
Enigmail 1.7.x before 1.7.2 sends emails in plaintext when encryption is enabled and only BCC recipients are specified, which allows remote attackers to obtain sensitive information by sniffing the network...
Apple Implements Email Encryption For iCloud
Apple quietly began encrypting virtually all of the email flowing in and out of its servers for its iCloud.com, mac.com and me.com domains, a move that throws up an important roadblock for attackers and others attempting to snoop on those transmissions. The change from Apple comes as security...
SMTP STARTTLS Deployments Better than Expected
As more service providers understand and embrace the importance of encrypting online communication, certain technologies are being elevated to the forefront of conversations. Perfect Forward Secrecy and HTTP Strict Transport Security HSTS are two that generally top most lists, but another, SMTP...
Apple iOS 7 Updates Silently Remove Encryption for Email Attachments
There is no question that Mobile devices have become a staple in everyday living around the world. But have you ever asked yourself, How Secure are the Android, iPhone or any other Smart devices? It is really important for us to think about the Security and Privacy of our Data stored in...
F-Secure Messaging Security Gateway 7.5.0.892 Cross Site Scripting
I. VULNERABILITY ------------------------- Reflected XSS Attacks vulnerabilities F-Secure Messaging Security Gateway V7.5.0.892 II. BACKGROUND ------------------------- F-Secure Messaging Security Gateway protects your company's confidential data. Users can easily send encrypted e-mails, and the...
Threat Outbreak Alert: Fake Secure Message Delivery Email Messages on February 6, 2014
Medium Alert ID: 32766 First Published: 2014 February 7 17:12 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a secure message for the recipient. The text in the email message attempts to convince the recipient to open t...
Threat Outbreak Alert: Fake Secure Message Delivery Notification Email Messages on February 5, 2014
Medium Alert ID: 32730 First Published: 2014 February 5 15:40 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a secure message for the recipient. The text in the email message attempts to convince the recipient to open t...
RHEL 6 : evolution (RHSA-2013:1540)
Updated evolution packages that fix one security issue, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. The Red Hat Security Response Team has rated this update as having low security impact. A Common Vulnerability Scoring System CVSS base score, which...
[USN-1922-1] Evolution Data Server vulnerability
========================================================================== Ubuntu Security Notice USN-1922-1 July 31, 2013 evolution-data-server vulnerability ========================================================================== A security issue affects these releases of Ubuntu and its...
Threat Outbreak Alert: Fake Encrypted Message Notification Email Messages on September 6, 2013
Medium Alert ID: 30678 First Published: 2013 September 6 19:49 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an encrypted message for the recipient. The text in the email message attempts to convince the recipient to...