Lucene search
K

68 matches found

Fedora
Fedora
added 2015/10/20 1:56 a.m.53 views

[SECURITY] Fedora 22 Update: opensmtpd-5.7.3p1-1.fc22

OpenSMTPD is a FREE implementation of the server-side SMTP protocol as defi ned by RFC 5321, with some additional standard extensions. It allows ordinary machines to exchange e-mails with other systems speaking the SMTP protocol. Started out of dissatisfaction with other implementations, OpenSMTP...

9.8CVSS0.8AI score0.04094EPSS
Exploits1
exploitpack
exploitpack
added 2015/06/30 2:5 p.m.12 views

SMTP-VRFY

This is a simple script to help you enumarate and discover valid email addresses on a smtp server, it uses a python script and a dictionary brute-force based attack. import socket import sys s=socket.socketsocket.AFINET, socket.SOCKSTREAM connect=s.connectsys.argv1,intsys.argv2 s.send'VRFY ' +...

0.5AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.34 views

Floosietek FTGate PRO 1.22 SMTP MAIL FROM Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7506/info A buffer overflow vulnerability has been reported for Floosietek FTGate PRO mail server. The vulnerability exists when the mail server attempts to process overly long SMTP 'Mail From' arguments. Due to the natur...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.21 views

Youngzsoft CMailServer 4.0 RCPT TO Buffer Overflow Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/7548/info A buffer overflow vulnerability has been reported for CMailServer. The vulnerability exists due to insufficient bounds checking when parsing e-mail headers. Specifically, an overly long RCPT TO e-mail header wil...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2013/02/08 12:0 a.m.70 views

cURL Buffer Overflow

cURL buffer overflow Wed 06 February 2013 Volema found remotely exploitable buffer overflow vulnerability in libcurl POP3, SMTP protocol handlers which lead to code execution RCE. When negotiating SASL DIGEST-MD5 authentication, the function Curlsaslcreatedigestmd5message uses the data provided...

7.5CVSS0.4AI score0.22913EPSS
Exploits6
0day.today
0day.today
added 2013/02/08 12:0 a.m.62 views

cURL Buffer Overflow Vulnerability

A remotely exploitable buffer overflow vulnerability was discovered in the libcurl POP3 and SMTP protocol handlers. Proper exploitation can allow for arbitrary code execution. cURL buffer overflow Wed 06 February 2013 Volema found remotely exploitable buffer overflow vulnerability in libcurl POP3...

7.5CVSS0.5AI score0.22913EPSS
Exploits6
OSV
OSV
added 2012/04/13 8:55 p.m.11 views

CVE-2012-0036

curl and libcurl 7.2x before 7.24.0 do not properly consider special characters during extraction of a pathname from a URL, which allows remote attackers to conduct data-injection attacks via a crafted URL, as demonstrated by a CRLF injection attack on the 1 IMAP, 2 POP3, or 3 SMTP protocol...

7.5CVSS6.6AI score0.16723EPSS
Exploits0References15
Debian CVE
Debian CVE
added 2012/04/13 8:0 p.m.32 views

CVE-2012-0036

curl and libcurl 7.2x before 7.24.0 do not properly consider special characters during extraction of a pathname from a URL, which allows remote attackers to conduct data-injection attacks via a crafted URL, as demonstrated by a CRLF injection attack on the 1 IMAP, 2 POP3, or 3 SMTP protocol...

7.5CVSS7.1AI score0.16723EPSS
Exploits0
FreeBSD
FreeBSD
added 2011/03/07 12:0 a.m.46 views

postfix -- plaintext command injection with SMTP over TLS

Wietse Venema has discovered a software flaw that allows an attacker to inject client commands into an SMTP session during the unprotected plaintext SMTP protocol phase, such that the server will execute those commands during the SMTP- over-TLS protocol phase when all communication is supposed to...

6.8CVSS3AI score0.16334EPSS
Exploits1References2
Check Point Advisories
Check Point Advisories
added 2010/01/19 12:0 a.m.3 views

Security Best Practice: Protect Yourself from Multiple SMTP Vulnerabilities

Simple Mail Transfer Protocol SMTP is an Internet standard for electronic mail e-mail transmission across Internet Protocol IP networks. SMTP is specified for outgoing mail transport and uses TCP port 25. There are several serious security limitations with the SMTP protocol that allow malicious...

7AI score
Exploits0
myhack58
myhack58
added 2009/03/05 12:0 a.m.40 views

The use of injection techniques to attack the mail server and defenses(a)-vulnerability warning-the black bar safety net

This article will detail through the talk to mail server communication of a Web application, i.e., the webmail application to inject some mail protocolsIMAP and SMTP Protocolcommands to attack a mail server of the principles, methods and defenses. A Webmail application role Webmail app through IM...

8.8AI score
Exploits0
securityvulns
securityvulns
added 2008/11/24 12:0 a.m.45 views

[SVRT-04-08] Vulnerability in WireShark 1.0.4 for DoS Attack

Vulnerability in WireShark 1.0.4 for DoS Attack 1. General Information On Nov 2008, Security Vulnerability Research Team of Bkis SVRT-Bkis has detected a vulnerability underlying WireShark 1.0.4 lastest version. The flaw is in the function processing SMTP protocol and enables hacker to perform a...

0.5AI score
Exploits0
seebug.org
seebug.org
added 2006/10/24 12:0 a.m.31 views

Winmail Mail Server 2.3 Remote Format String Exploit

No description provided by source. / Magic Winmail Server 2.3Build 0402 Remote Format string exploit. Coded by ThreaT. This one take advantage of a format bug in the SMTP protocol not pop3 for execute a malicious command on a vulnerable system usage : mwmxploit Target IP command to execute remote...

7.1AI score
Exploits0
securityvulns
securityvulns
added 2005/04/20 12:0 a.m.33 views

Microsoft Exchange Server SMTP protocol buffer overflow

Heap overflow on extended SMTP commands...

1.7AI score
Exploits0References3Affected Software1
securityvulns
securityvulns
added 2004/02/20 12:0 a.m.38 views

ZoneAlarm buffer overflow

Buffer overflow on oversized RCPT TO: in SMTP...

3.8AI score
Exploits0References2Affected Software1
exploitpack
exploitpack
added 2003/06/16 12:0 a.m.11 views

Mailtraq 2.1.0.1302 - Remote Format String SMTP Resource Consumption

Mailtraq 2.1.0.1302 - Remote Format String SMTP Resource Consumption source: https://www.securityfocus.com/bid/7926/info It has been reported that Mailtraq does not reliably handle format strings in some SMTP protocol fields. This may cause a system to become unstable and crash, allowing a remote...

0.2AI score
Exploits0
Exploit DB
Exploit DB
added 2003/06/16 12:0 a.m.23 views

Mailtraq 2.1.0.1302 - Remote Format String SMTP Resource Consumption

source: https://www.securityfocus.com/bid/7926/info It has been reported that Mailtraq does not reliably handle format strings in some SMTP protocol fields. This may cause a system to become unstable and crash, allowing a remote attacker to deny service to the system. @@%s%p%n %s%p%n...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2003/06/11 12:0 a.m.9 views

Winmail Mail Server 2.3 Build 0402 - Remote Format String

Winmail Mail Server 2.3 Build 0402 - Remote Format String / Magic Winmail Server 2.3Build 0402 Remote Format string exploit. Coded by ThreaT. This one take advantage of a format bug in the SMTP protocol smtp port + The command to execute cannot exceed 90 characters + compile : cl.exe mwmxploit.c ...

0.3AI score
Exploits0
0day.today
0day.today
added 2003/06/11 12:0 a.m.30 views

Winmail Mail Server 2.3 Remote Format String Exploit

Exploit for unknown platform in category remote exploits ==================================================== Winmail Mail Server 2.3 Remote Format String Exploit ==================================================== / Magic Winmail Server 2.3Build 0402 Remote Format string exploit. Coded by Threa...

7.1AI score
Exploits0
Exploit DB
Exploit DB
added 2003/06/11 12:0 a.m.46 views

Winmail Mail Server 2.3 Build 0402 - Remote Format String

/ Magic Winmail Server 2.3Build 0402 Remote Format string exploit. Coded by ThreaT. This one take advantage of a format bug in the SMTP protocol smtp port + The command to execute cannot exceed 90 characters + compile : cl.exe mwmxploit.c /w / include include pragma comment lib,"wsock32.lib" void...

7.4AI score
Exploits0
Rows per page
Query Builder