Code injection

The NTT DOCOMO sp mode mail application 6300 and earlier for Android 4.0.x and 6700 and earlier for Android 4.1 through 4.4 uses weak permissions for attachments during processing of incoming e-mail messages, which allows attackers to obtain sensitive information via a crafted application...

CVE-2014-1977

The CVE-2014-1977 entry concerns NTT DOCOMO’s sp mode mail application for Android (6300 series on 4.0.x and 6700 on 4.1–4.4). The vulnerability arises from weak permissions on attachments during processing of incoming emails, enabling a crafted Android application to obtain sensitive information...

CVE-2014-1977

The NTT DOCOMO sp mode mail application 6300 and earlier for Android 4.0.x and 6700 and earlier for Android 4.1 through 4.4 uses weak permissions for attachments during processing of incoming e-mail messages, which allows attackers to obtain sensitive information via a crafted application...

Threat Outbreak Alert: Fake Product Pricing Information Request Email Messages on March 18, 2014

Medium Alert ID: 33379 First Published: 2014 March 18 16:11 GMT Last Updated: 2014 March 19 14:00 GMT Version: 2 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a product inquiry for the recipient. The text in the email message attempt...

sp mode mail issue when accessing attachments in incoming mail

Overview sp mode mail provided by NTT DOCOMO contains a function that allows other Android applications to access attachments for incoming emails. This function contains an issue in the restriction of access permissions. Satoru Takekoshi reported this vulnerability to IPA. JPCERT/CC coordinated...

JVN#81739241: sp mode mail issue when accessing attachments in incoming mail

sp mode mail provided by NTT DOCOMO contains a function that allows other Android applications to access attachments for incoming emails. This function contains an issue in the restriction of access permissions. Impact If a malicious Android application is installed on the device, attachments for...

Threat Outbreak Alert: Fake Invoice and Bank Information Email Messages on March 12, 2014

Medium Alert ID: 33310 First Published: 2014 March 12 18:21 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain bank and invoice information for the recipient. The text in the email message attempts to convince the recipient...

Threat Outbreak Alert: Fake Business Complaint Notification Email Messages on March 11, 2014

Medium Alert ID: 33272 First Published: 2014 March 11 17:03 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a complaint notification from the Better Business Bureau for the recipient. The text in the email message attemp...

Threat Outbreak Alert: Email Messages with Malicious Attachments on March 10, 2014

Medium Alert ID: 33260 First Published: 2014 March 11 13:56 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an attachment for the recipient. The text in the email message attempts to convince the recipient to open the...

Threat Outbreak Alert: Email Messages with Malicious Images on March 9, 2014

Medium Alert ID: 33246 First Published: 2014 March 10 14:43 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an image for the recipient. The text in the email message attempts to convince the recipient to open the...

Threat Outbreak Alert: Email Messages with Malicious Attachments on March 7, 2014

Medium Alert ID: 33241 First Published: 2014 March 7 20:32 GMT Version: 1 Summary Cisco Security has detected significant activity related to French-language spam email messages that claim to contain a document for the recipient. The email message attempts to convince the recipient to open the...

Threat Outbreak Alert: Email Messages with Malicious Attachments on March 4, 2014

Medium Alert ID: 33197 First Published: 2014 March 5 19:21 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that contain a malicious attachment for the recipient. The email message attempts to convince the recipient to open the attachment for...

Threat Outbreak Alert: Fake MMS Email Messages on March 4, 2014

Medium Alert ID: 33177 First Published: 2014 March 5 13:51 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a multimedia messaging service MMS message for the recipient. The text in the email message attempts to convince...

SA-CONTRIB-2014-029 - Mime Mail - Access Bypass

The MIME Mail module allows to send MIME-encoded e-mail messages with embedded images and attachments. By default the module only allows files to be embedded or attached that are located in the public files directory. The module doesn't sufficiently check the file location, considering similar...

Threat Outbreak Alert: Email Messages with Malicious Attachments on March 3, 2014

Medium Alert ID: 33166 First Published: 2014 March 4 15:29 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an attachment for the recipient. The text in the email message attempts to convince the recipient to open the...

Threat Outbreak Alert: Email Messages with Malicious Attachments on March 3, 2014

Medium Alert ID: 33155 First Published: 2014 March 3 15:19 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that contain a malicious attachment for the recipient. The email message attempts to convince the recipient to open the attachment for...

Threat Outbreak Alert: Fake Product Sample Order Email Messages on June 23, 2014

Medium Alert ID: 33149 First Published: 2014 March 3 14:49 GMT Last Updated: 2014 June 25 13:05 GMT Version: 20 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a product sample order for the recipient. The text in the email message...

Threat Outbreak Alert: Email Messages with Malicious Attachments on February 28, 2014

Medium Alert ID: 33115 First Published: 2014 February 28 19:19 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that contain a malicious attachment for the recipient. The email message attempts to convince the recipient to open the attachment...

Threat Outbreak Alert: Email Messages with Malicious Attachments on February 27, 2014

Medium Alert ID: 33095 First Published: 2014 February 27 23:07 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that contain a malicious attachment for the recipient. The email message attempts to convince the recipient to open the attachment...

[OutlookAttachView] View/Extract/Save Outlook Attachments

OutlookAttachView scans all messages stored in your Outlook, and displays the list of all attached files that it finds. You can easily select one or more attachments and save all of them into the desired folder, as well as you can delete unwanted large attachments that take too much disk space in...