121 matches found
Scripting Engine Memory Corruption Vulnerability
A remote code execution vulnerability exists in the way that the scripting engine handles objects in memory in Internet Explorer. The vulnerability could corrupt memory in such a way that an attacker could execute arbitrary code in the context of the current user. An attacker who successfully...
MGASA-2018-0476 Updated messagelib packages fix security vulnerability
Some HTML emails can trick messagelib into opening a new browser window when displaying said email as HTML. This happens even if the option to allow the HTML emails to access remote servers is disabled in KMail settings. This means that the owners of the servers referred in the email can see in...
QIWI: account takeover https://teamplay.qiwi.com
Здравствуйте. Нашел баг, как украсть аккаунт на данном сайте. Для того, чтобы это провернуть нам нужно знать эмайл вашего пользователя. Предположим что пользователь зашел на ваш сайт через аккаунт ВКонтакте, к его странице привязана почта [email protected] Мы идем на https://www.faceit.com и...
CVE-2018-16587
In Open Ticket Request System OTRS 4.0.x before 4.0.32, 5.0.x before 5.0.30, and 6.0.x before 6.0.11, an attacker could send a malicious email to an OTRS system. If a user with admin permissions opens it, it causes deletions of arbitrary files that the OTRS web server user has write access to...
CVE-2018-16587
In Open Ticket Request System OTRS 4.0.x before 4.0.32, 5.0.x before 5.0.30, and 6.0.x before 6.0.11, an attacker could send a malicious email to an OTRS system. If a user with admin permissions opens it, it causes deletions of arbitrary files that the OTRS web server user has write access to...
CVE-2017-15705
A denial of service vulnerability was identified that exists in Apache SpamAssassin before 3.4.2. The vulnerability arises with certain unclosed tags in emails that cause markup to be handled incorrectly leading to scan timeouts. In Apache SpamAssassin, using HTML::Parser, we setup an object and...
Microsoft Exchange Memory Corruption Vulnerability
A remote code execution vulnerability exists in Microsoft Exchange software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the System user. An attacker could then install programs;...
CVE-2017-12379
ClamAV AntiVirus software versions 0.99.2 and prior contain a vulnerability that could allow an unauthenticated, remote attacker to cause a denial of service DoS condition or potentially execute arbitrary code on an affected device. The vulnerability is due to improper input validation checking...
UBUNTU-CVE-2018-5689
Cross-site scripting XSS vulnerability in admin/auth.php in Dotclear 2.12.1 allows remote authenticated users to inject arbitrary web script or HTML via the malicious user's email...
Open Ticket Request System Session Hijacking Vulnerability
Open Ticket Request System OTRS is an open source defect tracking and management system software from the German OTRS Group. The software categorizes service requests submitted through various channels such as phone calls, emails, etc. into different queues and service levels, and the service...
Microsoft Office DDE Remote Code Execution
A remote code execution vulnerability exists in Microsoft Office. The vulnerability is due to the DDE feature that allows an Office application to load data from other Office applications. A remote attacker can exploit this vulnerability by enticing the target user to open a specially crafted ema...
Simple Exploit Allows Attackers to Modify Email Content — Even After It's Sent!
Security researchers are warning of a new, easy-to-exploit email trick that could allow an attacker to turn a seemingly benign email into a malicious one after it has already been delivered to your email inbox. Dubbed Ropemaker stands for Remotely Originated Post-delivery Email Manipulation Attac...
Symantec AntiVirus - 'dec2lha Library' Remote Stack Buffer Overflow (PoC)
Source: https://bugs.chromium.org/p/project-zero/issues/detail?id=814 The dec2lha library is the library responsible for decompressing LZH and LHA archives. The CSymLHA::getheader routine has a trivial stack buffer overflow. .text:00023D91 31 C0 xor eax, eax ... .text:00023DAE 8D 95 E4 FB FF+ lea...
Threat Outbreak Alert RuleID18157: Email Messages Distributing Malicious Software on September 21, 2015
Medium Alert ID: 41139 First Published: 2015 September 22 13:39 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID18157 may contain the following files: Name ...
HDFLVPlayer 2.2 and previous
HDFLVPlayer versions 2.2 and all previous Email exploit Version 2.3 Fixed SQL injection in download.php file.https://www.apptha.com/category/extension/Joomla/HD-FLV-Player Version 2.2 Resolved cross domain issue in download.php & email.php files...
MS IE 5.0 ActiveX "Object for constructing type libraries for scriptlets" Vulnerability
No description provided by source. Microsoft Internet Explorer 5.0 for Windows 95/Windows 98/Windows NT 4 ActiveX Object for constructing type libraries for scriptlets Vulnerability source: http://www.securityfocus.com/bid/598/info The 'scriptlet.typlib' ActiveX control can create, edit, and...
KDE FTP KIOSlave URI Arbitrary FTP Server Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/11827/info KDE FTP kioslave-based applications such as Konqueror are reported prone to an arbitrary FTP server command execution vulnerability. This issue is due to a failure of the application to properly sanitize...
CVE-2013-4495
The sendthemail function in server/svrmail.c in Terascale Open-Source Resource and Queue Manager aka TORQUE Resource Manager before 4.2.6 allows remote attackers to execute arbitrary commands via shell metacharacters in the email -M switch to qsub...
PHP Address Book - '/addressbook/register/user_add_save.php?email' SQL Injection
source: https://www.securityfocus.com/bid/58911/info PHP Address Book is prone to multiple SQL-injection vulnerabilities because it fails to sufficiently sanitize user-supplied input. A successful exploit may allow an attacker to compromise the application, access or modify data, or exploit laten...
afterlogic mailsuite pro (VMware Appliance) 6.3 - Persistent Cross-Site Scripting
!/usr/bin/python ''' Author: loneferret of Offensive Security Product: AfterLogic Mailsuite Pro VMware Appliance Version: 6.3 Vendor Site: http://www.afterlogic.com/ Software Download: http://www.afterlogic.com/download/ Timeline: 29 May 2012: Vulnerability reported to CERT 30 May 2012: Response...