Mozilla Products Denial Of Service Vulnerability (Windows)

The host is installed with Thunderbird/Seamonkey and is prone to Denial Of Service vulnerability. OpenVAS Vulnerability Test $Id: secpodmozillaprdtsdosvulnwinmar10.nasl 6444 2017-06-27 11:24:02Z santu $ Mozilla Products Denial Of Service Vulnerability Windows Authors: Antu Sanadi Copyright:...

Copyright Infringement Lawsuit Email Scam

US-CERT is aware of public reports of an active email scam. These emails, which appear to come from seemingly legitimate law firms, indicate that someone has filed a copyright lawsuit against the message recipient. The messages may contain malicious attachments or web links. If a user opens the...

Code injection

Mozilla Thunderbird before 2.0.0.24 and SeaMonkey before 1.1.19 process e-mail attachments with a parser that performs casts and line termination incorrectly, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted message,...

seamonkey/thunderbird: crash when indexing certain messages with attachments

No description is available for this CVE...

seamonkey/thunderbird: crash when indexing certain messages with attachments

Mozilla Thunderbird before 2.0.0.24 and SeaMonkey before 1.1.19 process e-mail attachments with a parser that performs casts and line termination incorrectly, which allows remote attackers to cause a denial of service application crash or possibly execute arbitrary code via a crafted message,...

Multiple File Attachments Mail Form Pro 2.0 - Arbitrary File Upload

Multiple File Attachments Mail Form Pro 2.0 - Arbitrary File Upload Exploit Title: Multiple File Attachments Mail Form Pro v2 - WebShell upload Date: 16/02/2010 Author: EgoPL Mail: [email protected] Software Link: http://activeden.net/item/multiple-file-attachments-mail-form-prov2/31262 17$ but It...

Multiple File Attachments Mail Form Pro v2 - WebShell upload

Exploit for unknown platform in category web applications ============================================================ Multiple File Attachments Mail Form Pro v2 - WebShell upload ============================================================ Exploit Title: Multiple File Attachments Mail Form Pro v...

Mail Form Pro 2 Shell Upload

Exploit Title: Multiple File Attachments Mail Form Pro v2 - WebShell upload Date: 16/02/2010 Author: EgoPL Mail: [email protected] Software Link: http://activeden.net/item/multiple-file-attachments-mail-form-prov2/31262 Version: Pro V2 Tested on: Arch Linux + Apache but it's OS independent. Exploi...

Microsoft PowerPoint 'OEPlaceholderAtom' Record Invalid Index Remote Code Execution Vulnerability

Description Microsoft PowerPoint is prone to a remote code-execution vulnerability. An attacker can exploit this issue by enticing an unsuspecting user to open a malicious PowerPoint file. Successful exploits would allow the attacker to execute arbitrary code in the context of the currently...

Microsoft PowerPoint File Path Handling Remote Code Execution Vulnerability

Description Microsoft PowerPoint is prone to a remote code-execution vulnerability. An attacker can exploit this issue by enticing a victim to open a malicious PowerPoint file. Successful exploits would allow the attacker to execute arbitrary code in the context of the currently logged-in user...

Microsoft Office 'OfficeArtSpgr' Container Pointer Overwrite Remote Code Execution Vulnerability

Description Microsoft Office is prone to a remote code-execution vulnerability. An attacker could exploit this issue by enticing a victim to open a malicious Office file. Successful exploits would allow the attacker to execute arbitrary code in the context of the currently logged-in user...

I Have Only One Security Prediction for 2010

Instead of the usual top ten lists that are all-too-common with predictions for the new year, I have just one: 2010 will be the year of desktop applications handling untrusted data in sandboxed processes, and it will be about time. Since the release of Windows XP SP2, there have been significantl...

IPB v2.x up to 3.0.4 XSS vulnerability

Invision Power Board XSS vulnerability Software : Invision Power Board IPB Affected : IPB v2.x up to v3.0.4 prior versions might be vulnerable as well Remote : Yes Required : Internet Explorer +5.0 Vendor : http://www.invisionpower.com/ Download : Commercially available Author : Xacker Contact :...

KDE -- multiple vulnerabilities

oCERT reports: Ark input sanitization errors: The KDE archiving tool, Ark, performs insufficient validation which leads to specially crafted archive files, using unknown MIME types, to be rendered using a KHTML instance, this can trigger uncontrolled XMLHTTPRequests to remote sites. IO Slaves inp...

MDaemon Content Filter Directory Traversal

MDaemon is a Windows-based email server that provides full mail server functionality. MDaemon supports the SMTP, IMAP and POP3 protocols. MDaemon provides Content Filter functionality to filter incoming email messages based on the headers and message content. RFC 2183 defines header fields in a...

CVE-2009-3258

vtiger CRM before 5.1.0 allows remote authenticated users, with certain View privileges, to delete 1 attachments, 2 reports, 3 filters, 4 views, and 5 tickets; insert 6 attachments, 7 reports, 8 filters, 9 views, and 10 tickets; and edit 11 reports, 12 filters, 13 views, and 14 tickets via...

CVE-2009-3258

vtiger CRM before 5.1.0 allows remote authenticated users, with certain View privileges, to delete 1 attachments, 2 reports, 3 filters, 4 views, and 5 tickets; insert 6 attachments, 7 reports, 8 filters, 9 views, and 10 tickets; and edit 11 reports, 12 filters, 13 views, and 14 tickets via...

yTNEF/Evolution TNEF Attachment decoder plugin directory traversal & buffer overflow vulnerabilities

------------------------------------------------------------------------ yTNEF/Evolution TNEF Attachment decoder plugin directory traversal & buffer overflow vulnerabilities ------------------------------------------------------------------------ Yorick Koster, June 2009...

Specifically Crafted Archive/Container Files can Bypass Initial Scans

SUMMARY Specifically-crafted archive and container files can potentially bypass initial malware scans in some products. AFFECTED PRODUCTS Products --- Symantec Mail Security for Domino Symantec Mail Security for Microsoft Exchange Symantec Mail Security for SMTP Symantec Brightmail Gateway Symant...

Microsoft Word Record Parsing Buffer Overflow Vulnerability

Description Microsoft Word is prone to a buffer-overflow vulnerability. An attacker can exploit this issue to execute arbitrary code in the context of the currently logged-in user. Failed exploit attempts will likely result in denial-of-service conditions. Technologies Affected Microsoft Office...