20 matches found
EUVD-2015-0890
Malware in sbrugna...
EUVD-2015-0888
Malware in sbrugna...
EUVD-2015-0889
Malware in sbrugna...
AL-Mail32 Attachment Name Denial of Service Vulnerability
AL-Mail32 is an email client. A security vulnerability in AL-Mail32's handling of attachment filenames allows attackers to exploit the vulnerability to crash the application...
AL-Mail32 Attachment Name Buffer Overflow Vulnerability
AL-Mail32 is an email client. AL-Mail32 suffers from a buffer overflow vulnerability in the handling of attachment filenames, which could be exploited by an attacker to crash the application or execute arbitrary code...
CVE-2015-0879
CREAR AL-Mail32 before 1.13d allows remote attackers to cause a denial of service application crash via a 1 CON, 2 AUX, or 3 NUL device name in the filename of an attachment...
CVE-2015-0878
Directory traversal vulnerability in CREAR AL-Mail32 before 1.13d allows remote attackers to write to arbitrary files via a crafted filename of an attachment...
Directory traversal
Directory traversal vulnerability in CREAR AL-Mail32 before 1.13d allows remote attackers to write to arbitrary files via a crafted filename of an attachment...
Buffer overflow
Buffer overflow in CREAR AL-Mail32 before 1.13d allows remote attackers to execute arbitrary code via a long filename of an attachment...
Code injection
CREAR AL-Mail32 before 1.13d allows remote attackers to cause a denial of service application crash via a 1 CON, 2 AUX, or 3 NUL device name in the filename of an attachment...
CVE-2015-0879
CREAR AL-Mail32 before 1.13d allows remote attackers to cause a denial of service application crash via a 1 CON, 2 AUX, or 3 NUL device name in the filename of an attachment...
CVE-2015-0880
Buffer overflow in CREAR AL-Mail32 before 1.13d allows remote attackers to execute arbitrary code via a long filename of an attachment...
CVE-2015-0879
AL-Mail32 (CREAR) vulnerability CVE-2015-0879 affects the Windows email client where a specially crafted attachment filename can trigger a DoS (application crash). Affected versions include 1.13c and earlier, with the root cause described as a flaw in processing attachment filenames. The in-scope...
CVE-2015-0880
AL-Mail32 (CREAR) contains a buffer overflow in the handling of attachment filenames. The CVE-2015-0880 vulnerability affects AL-Mail32 prior to version 1.13d (JVN lists 1.13c and earlier) and could let a remote attacker execute arbitrary code by supplying a specially crafted attachment filename....
CVE-2015-0878
CVE-2015-0878 affects CREAR AL-Mail32/AL-Mail32 prior to version 1.13d. A directory-traversal flaw in how attachments are processed lets an attacker craft a filename to create arbitrary files or overwrite existing ones, enabling remote impact via a crafted attachment filename. Affected software i...
AL-Mail32 vulnerable to directory traversal
Overview AL-Mail32 provided by CREAR Corporation is an email client for Windows. AL-Mail32 contains a directory traversal vulnerability due to a flaw in processing attachments. Yosuka HASEGAWA of NetAgent Co.,Ltd. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under...
JVN#55365709: AL-Mail32 vulnerable to denial-of-service (DoS)
AL-Mail32 provided by CREAR Corporation is an email client for Windows. AL-Mail32 contains a denial-of-service DoS vulnerability due to a flaw in processing attachments. Impact Processing an attachment with a specially crafted file name may cause the software to become unresponsive. Solution Upda...
JVN#77294617: AL-Mail32 vulnerable to directory traversal
AL-Mail32 provided by CREAR Corporation is an email client for Windows. AL-Mail32 contains a directory traversal vulnerability due to a flaw in processing attachments. Impact Processing an attachment with a specially crafted file name may result in creation of an arbitrary file or an overwrite of...
JVN#93318392: AL-Mail32 vulnerable to buffer overflow
AL-Mail32 provided by CREAR Corporation is an email client for Windows. AL-Mail32 contains a buffer overflow vulnerability due to a flaw in processing attachments. Impact When an attachment with specially crafted file name is processed, arbitrary code may be executed. Solution Update the Software...
CREAR ALMail32 1.10 Buffer Overflow Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/574/info The ALMail32 POP3 client conatins unchecked buffers in the header parsing code. An abnormally long FROM: or TO: field in the header of an incoming email will overwrite the buffer and allow arbitrary code to be...