359 matches found
CVE-2004-0903
Stack-based buffer overflow in the writeGroup function in nsVCardObj.cpp for Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8 allows remote attackers to execute arbitrary code via malformed VCard attachments that are not properly handled when previewing...
CVE-2004-0903
CVE-2004-0903 describes a stack-based buffer overflow in the writeGroup function of nsVCardObj.cpp, affecting Mozilla Firefox before the Preview Release, Mozilla before 1.7.3, and Thunderbird before 0.8. An attacker could remotely execute arbitrary code by processing malformed VCard attachments d...
Mozilla, Firefox, Thunderbird, Epiphany: New releases fix vulnerabilities
Background Mozilla is a popular web browser that includes a mail and newsreader. Epiphany is a web browser that uses Gecko, the Mozilla rendering engine. Mozilla Firefox and Mozilla Thunderbird are respectively the next-generation browser and mail client from the Mozilla project. Description...
Mozilla Mail vulnerable to buffer overflow via "writeGroup()" function in "nsVCardObj.cpp"
Overview Mozilla Mail contains a vulnerability in the display routines for VCards. By sending an email message with a crafted VCard, a remote attacker may be able to execute arbitrary code on the victim's machine with the privileges of the current user. Description Mozilla Mail contains a stack...
mozilla -- vCard stack buffer overflow
Georgi Guninski discovered a stack buffer overflow which may be triggered when viewing email messages with vCard attachments...
Vcard 2.8 uninstall script problem
Informations : °°°°°°°°°°°°°° Procduct: Vcard Version : 2.9 may other VER Problems : File uninstall & delete the table PHP Code/Location : °°°°°°°°°°°°°°°°°°° /admin/uninstall.php : ------------------------------------------------------------------------ ... ? $step = $HTTPGETVARS'step'; if...
security flaw
Buffer overflow in the VCF file information reader for KDE Personal Information Management kdepim suite in KDE 3.1.0 through 3.1.4 allows attackers to execute arbitrary code via a VCF file...
CVE-2003-0103
Format string vulnerability in Nokia 6210 handset allows remote attackers to cause a denial of service crash, lockup, or restart via a Multi-Part vCard with fields containing a large number of format string specifiers...
CVE-2001-0145
Buffer overflow in VCard handler in Outlook 2000 and 98, and Outlook Express 5.x, allows an attacker to execute arbitrary commands via a malformed vCard birthday field...
CVE-2001-0145
Buffer overflow in VCard handler in Outlook 2000 and 98, and Outlook Express 5.x, allows an attacker to execute arbitrary commands via a malformed vCard birthday field...
CVE-2001-0145
CVE-2001-0145 affects Outlook 2000/98 and Outlook Express 5.x, where a buffer overflow in the VCard handler can be triggered by a malformed vCard birthday field, allowing an attacker to execute arbitrary commands. The root cause described is a faulty VCard birthday parsing leading to memory corru...
EUVD-2001-0145
Buffer overflow in VCard handler in Outlook 2000 and 98, and Outlook Express 5.x, allows an attacker to execute arbitrary commands via a malformed vCard birthday field...
Security Advisory: Microsoft Outlook 2000 vCard Buffer Overrun (additional information) - Revised
-- Corsaire Limited Security Advisory -- Title: Microsoft Outlook 2000 vCard Buffer Overrun additional information - Revised Date: 01.03.01 Application: Outlook 2000, Outlook Express Environment: WinNT, Win2000 Author: Martin O'Neal [email protected] Audience: General distribution -- Scop...
Дырка в Outlook при работе с бизнесс-картами.
Длинные поля в vCard приводят к переполнению буфера...
Security Bulletin MS01-012
---------------------------------------------------------------------- Title: Outlook, Outlook Express Vcard Handler Contains Unchecked Buffer Date: 22 February 2001 Software: Outlook, Outlook Express Impact: Run code of attacker's choice Bulletin: MS01-012 Microsoft encourages customers to...
CVE-2000-0756
Microsoft Outlook 2000 does not properly process long or malformed fields in vCard .vcf files, which allows attackers to cause a denial of service...
CVE-2000-0756
Microsoft Outlook 2000 does not properly process long or malformed fields in vCard .vcf files, which allows attackers to cause a denial of service...
CVE-2000-0756
CVE-2000-0756 affects Microsoft Outlook 2000, where the application does not properly process long or malformed vCard (.vcf) fields, enabling a denial of service. The root cause is improper handling of vCard fields during parsing. The available documents do not provide exploitable details, proof-...
vCard DoS on Outlook 2000
-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Vulnerability in vCard import in Outlook 2000 Released: August 30, 2000 Summary ======= Under certain conditions, excessively long or malformed fields in a vCard .vcf file can cause Microsoft Outlook 2000 to either overflow or excessively utilize syst...