49 matches found
EUVD-2012-2561
Malware in sbrugna...
EUVD-2005-1716
Malware in sbrugna...
EUVD-2010-3200
Malware in sbrugna...
EUVD-2008-1500
Malware in sbrugna...
EUVD-2008-2852
Malware in sbrugna...
EUVD-2007-4355
Malware in sbrugna...
CVE-2012-2575
Cross-site scripting XSS vulnerability in NetWin SurgeMail 6.0a4 allows remote attackers to inject arbitrary web script or HTML via the SRC attribute of an IFRAME element in the body of an HTML e-mail message...
NetWin SurgeMail 跨站脚本漏洞
NetWin SurgeMail is a full-featured SMTP / IMAP / POP / Webmail server from NetWin. A cross-site scripting vulnerability exists in NetWin SurgeMail version v78c2, which originates from a vulnerability that allows an attacker to execute arbitrary JavaScript code by injecting a carefully constructe...
NetWin SurgeMail Webmail Server page Parameter Format String - Ver2 (CVE-2008-1055)
A format string vulnerability has been reported in NetWin SurgeMail and WebMail. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...
Cross site scripting
Cross-site scripting XSS vulnerability in NetWin SurgeMail 6.0a4 allows remote attackers to inject arbitrary web script or HTML via the SRC attribute of an IFRAME element in the body of an HTML e-mail message...
SurgeMail SurgeWeb Cross Site Scripting Vulnerability
The host is running SurgeMail and is prone to Cross site scripting vulnerability. OpenVAS Vulnerability Test $Id: gbsurgemailsurgewebxssvuln.nasl 7006 2017-08-25 11:51:20Z teissa $ SurgeMail SurgeWeb Cross Site Scripting Vulnerability Authors: Sooraj KS Copyright: Copyright c 2011 Greenbone...
CVE-2010-3201
Cross-site scripting XSS vulnerability in NetWin Surgemail before 4.3g allows remote attackers to inject arbitrary web script or HTML via the usernameex parameter to the surgeweb program...
Cross site scripting
Cross-site scripting XSS vulnerability in NetWin Surgemail before 4.3g allows remote attackers to inject arbitrary web script or HTML via the usernameex parameter to the surgeweb program...
CVE-2010-3201
Cross-site scripting XSS vulnerability in NetWin Surgemail before 4.3g allows remote attackers to inject arbitrary web script or HTML via the usernameex parameter to the surgeweb program...
CVE-2010-3201
The CVE-2010-3201 entry concerns NetWin Surgemail (SurgeMail) SurgeWeb Cross‑Site Scripting (XSS) via the username_ex parameter. The vulnerability is described as a remote XSS that allows an attacker to inject arbitrary script/HTML in the SurgeWeb login page, potentially stealing cookies or hijac...
NetWin Surgemail XSS vulnerability
Application NetWin Surgemail 4.3e Vendor NetWin - http://netwinsite.com Discovered by Kerem Kocaer [email protected] Problem ------- Cross-site scripting XSS vulnerability in the Surgemail webmail login page /surgemail allows remote attackers to inject arbitrary web script or HTML. Input...
NetWin Surgemail 4.3e Cross Site Scripting
Application NetWin Surgemail 4.3e Vendor NetWin - http://netwinsite.com Discovered by Kerem Kocaer Problem ------- Cross-site scripting XSS vulnerability in the Surgemail webmail login page /surgemail allows remote attackers to inject arbitrary web script or HTML. Input passed to the "usernameex"...
CVE-2008-7182
Buffer overflow in the IMAP service in NetWin Surgemail 3.9e, and possibly other versions before 3.9g2, allows remote authenticated users to cause a denial of service crash and possibly execute arbitrary code via a long first argument to the APPEND command, a different vector than CVE-2008-1497 a...
Buffer overflow
Buffer overflow in the IMAP service in NetWin Surgemail 3.9e, and possibly other versions before 3.9g2, allows remote authenticated users to cause a denial of service crash and possibly execute arbitrary code via a long first argument to the APPEND command, a different vector than CVE-2008-1497 a...
CVE-2008-7182
Buffer overflow in the IMAP service in NetWin Surgemail 3.9e, and possibly other versions before 3.9g2, allows remote authenticated users to cause a denial of service crash and possibly execute arbitrary code via a long first argument to the APPEND command, a different vector than CVE-2008-1497 a...