Lucene search
K

64 matches found

Redos
Redos
added 2021/09/08 12:0 a.m.14 views

ROS-2-1190

2.1190 Multiple vulnerabilities in Mozilla Thunderbird CVE-2021-23994, CVE-2021-23995, CVE-2021-23998, CVE-2021-23961, CVE-2021-23999, CVE-2021-24002, CVE-2021-29945, CVE-2021-29946, CVE-2021-29948, CVE-2021-29950. 1. Vulnerability Description: Vulnerabilities allow a remote attacker to compromis...

8.8CVSS9.2AI score0.4644EPSS
Exploits3
Tenable Nessus
Tenable Nessus
added 2020/11/19 12:0 a.m.74 views

macOS 11.0.x < 11.0.1

The remote host is running a version of macOS / Mac OS X that is 11.0.x prior to 11.0.1. It is, therefore, affected by multiple vulnerabilities, including the following: - An out-of-bounds write issue that can lead to unexpected application termination or arbitrary code execution when opening a...

9.3CVSS7.5AI score0.22178EPSS
Exploits7References63
Hacker One
Hacker One
added 2020/05/31 4:5 p.m.26 views

Mail.ru: Local SQL Injection in Content Provider (ru.mail.data.contact.ContactsProvider) of Mail.ru for Android, version 12.2.0.29734

Local SQL injection vulnerability in ContactsProvider of Mail.ru Mail application for Android special permissions required...

4.8AI score
Exploits0
OSV
OSV
added 2018/04/03 6:29 a.m.2 views

CVE-2018-4174

An issue was discovered in certain Apple products. iOS before 11.3 is affected. macOS before 10.13.4 is affected. The issue involves the "Mail" component. It allows man-in-the-middle attackers to read S/MIME encrypted messages by leveraging an inconsistency in the user interface...

5.9CVSS7.3AI score0.01511EPSS
Exploits0References5
ThreatPost
ThreatPost
added 2016/09/13 3:21 p.m.12 views

iOS 10 Security Updates Move to HTTPS

Update Apple has finally moved its iOS security update mechanism to HTTPS with today’s release of iOS 10. Previously, updates were sent to devices over HTTP and attackers already present on a network could interfere with updates. “An issue existed in iOS updates, which did not properly secure use...

0.1AI score
Exploits0References4
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.22 views

Apple Mac OS X 10.5.x Mail Arbitrary Code Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/26510/info Apple Mac OS X is prone to a vulnerability that can allow arbitrary code to run. This issue affects the Mail application when handling email attachments. Attackers can exploit this issue to execute arbitrary co...

7.5CVSS6.5AI score0.0267EPSS
Exploits4
seebug.org
seebug.org
added 2011/11/09 12:0 a.m.15 views

Apple Mac OS X Mail MIME附件拒绝服务漏洞

Mac OS是一套运行于苹果的Macintosh系列电脑上的操作系统。 Apple Mac OS X在Mail应用的实现上存在安全漏洞,可被恶意用户利用造成拒绝服务。 此漏洞源于在处理某些电子邮件时Mail应用程序中的错误,可被利用通过包含大量MIME附件的电子邮件使应用程序崩溃。可使用另一个电子邮件客户端删除恶意电子邮件。 Apple Macintosh OS X 厂商补丁: Apple ----- 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://support.apple.com/...

7.1AI score
Exploits0
NVD
NVD
added 2011/06/24 8:55 p.m.25 views

CVE-2011-0207

The MobileMe component in Apple Mac OS X before 10.6.8 uses a cleartext HTTP session for the Mail application to read e-mail aliases, which allows remote attackers to obtain potentially sensitive alias information by sniffing the network...

5CVSS5.5AI score0.01877EPSS
Exploits1References3
Prion
Prion
added 2011/06/24 8:55 p.m.24 views

Design/Logic Flaw

The MobileMe component in Apple Mac OS X before 10.6.8 uses a cleartext HTTP session for the Mail application to read e-mail aliases, which allows remote attackers to obtain potentially sensitive alias information by sniffing the network...

5CVSS6AI score0.01877EPSS
Exploits1References3Affected Software2
CVE
CVE
added 2011/06/24 8:0 p.m.58 views

CVE-2011-0207

CVE-2011-0207 affects Apple Mac OS X prior to 10.6.8, specifically the MobileMe component used by Mail. The root cause is the use of a cleartext HTTP session to read e‑mail aliases, allowing an attacker on the same network to sniff traffic and obtain potentially sensitive alias information. Accor...

5CVSS4.7AI score0.01877EPSS
Exploits1References3Affected Software1
Cvelist
Cvelist
added 2011/06/24 8:0 p.m.30 views

CVE-2011-0207

The MobileMe component in Apple Mac OS X before 10.6.8 uses a cleartext HTTP session for the Mail application to read e-mail aliases, which allows remote attackers to obtain potentially sensitive alias information by sniffing the network...

4.9AI score0.01877EPSS
Exploits1References3
Check Point Advisories
Check Point Advisories
added 2010/07/13 12:0 a.m.36 views

Microsoft Outlook AttachMethods Remote Code Execution (MS10-045; CVE-2010-0266)

Microsoft Outlook is an e-mail application and a personal information manager. A remote code execution vulnerability has been reported in the way that Microsoft Office Outlook tries to verify attachments in a specially crafted e-mail message. The vulnerability is due to an error in Microsoft Offi...

9.3CVSS6.9AI score0.55278EPSS
Exploits11
OpenVAS
OpenVAS
added 2010/05/25 12:0 a.m.34 views

Opera Browser Multiple Denial Of Service Vulnerability (Windows)

The host is installed with Opera Web Browser and is prone to Multiple Denial of Service vulnerability. OpenVAS Vulnerability Test $Id: secpodoperamultdosvulnwin.nasl 5401 2017-02-23 09:46:07Z teissa $ Opera Browser Multiple Denial Of Service Vulnerability Windows Authors: Antu Sanadi Copyright:...

5CVSS7.5AI score0.02279EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2010/05/25 12:0 a.m.21 views

Opera Browser Multiple Denial Of Service Vulnerability - Windows

Opera Web Browser is prone to Multiple Denial of Service vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5CVSS7.4AI score0.02279EPSS
Exploits2References2
NVD
NVD
added 2010/05/20 5:30 p.m.23 views

CVE-2010-1989

Opera 9.52 executes a mail application in situations where an IMG element has a SRC attribute that is a redirect to a mailto: URL, which allows remote attackers to cause a denial of service excessive application launches via an HTML document with many images, a related issue to CVE-2010-0181...

5CVSS7.5AI score0.02255EPSS
Exploits1References3
NVD
NVD
added 2010/05/20 5:30 p.m.13 views

CVE-2010-1990

Mozilla Firefox 3.6.x, 3.5.x, 3.0.19, and earlier, and SeaMonkey, executes a mail application in situations where an IFRAME element has a mailto: URL in its SRC attribute, which allows remote attackers to cause a denial of service excessive application launches via an HTML document with many IFRA...

5CVSS6.4AI score0.0205EPSS
Exploits1References3
ATTACKERKB
ATTACKERKB
added 2010/05/20 5:30 p.m.2 views

CVE-2010-1992

Google Chrome 1.0.154.48 executes a mail application in situations where an IFRAME element has a mailto: URL in its SRC attribute, which allows remote attackers to cause a denial of service excessive application launches via an HTML document with many IFRAME elements...

5CVSS5.6AI score0.0114EPSS
Exploits1References5
ATTACKERKB
ATTACKERKB
added 2010/05/20 5:30 p.m.3 views

CVE-2010-1991

Microsoft Internet Explorer 6.0.2900.2180, 7, and 8.0.7600.16385 executes a mail application in situations where an IFRAME element has a mailto: URL in its SRC attribute, which allows remote attackers to cause a denial of service excessive application launches via an HTML document with many IFRAM...

5CVSS5.6AI score0.10537EPSS
Exploits1References4
Prion
Prion
added 2010/05/20 5:30 p.m.20 views

Design/Logic Flaw

Opera 9.52 executes a mail application in situations where an IMG element has a SRC attribute that is a redirect to a mailto: URL, which allows remote attackers to cause a denial of service excessive application launches via an HTML document with many images, a related issue to CVE-2010-0181...

5CVSS7AI score0.02255EPSS
Exploits2References3Affected Software1
Prion
Prion
added 2010/05/20 5:30 p.m.26 views

Hardcoded credentials

Microsoft Internet Explorer 6.0.2900.2180, 7, and 8.0.7600.16385 executes a mail application in situations where an IFRAME element has a mailto: URL in its SRC attribute, which allows remote attackers to cause a denial of service excessive application launches via an HTML document with many IFRAM...

5CVSS6.9AI score0.10537EPSS
Exploits1References2Affected Software2
Rows per page
Query Builder