CVE-2009-1286

The IMAP task in the server in IBM Lotus Domino 8.0.2 before FP1 IF1 and 8.5 before IF3 allows remote attackers to cause a denial of service daemon crash via a MIME e-mail message with RFC822 attachments aka blobs containing malformed root entities...

Mandriva Update for evolution MDVSA-2008:111 (evolution)

Check for the Version of evolution OpenVAS Vulnerability Test Mandriva Update for evolution MDVSA-2008:111 evolution Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify i...

Mandriva Update for evolution MDVSA-2008:111 (evolution)

Check for the Version of evolution OpenVAS Vulnerability Test Mandriva Update for evolution MDVSA-2008:111 evolution Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify i...

Bugzilla 'attachment.cgi' CSRF Vulnerability

Bugzilla is prone to a cross-site request-forgery vulnerability. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mozilla:bugzilla...

Ubuntu Update for evolution vulnerabilities USN-615-1

Ubuntu Update for Linux kernel vulnerabilities USN-615-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN6151.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for evolution vulnerabilities USN-615-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

Ubuntu Update for enigmail vulnerability USN-427-1

Ubuntu Update for Linux kernel vulnerabilities USN-427-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN4271.nasl 7969 2017-12-01 09:23:16Z santu $ Ubuntu Update for enigmail vulnerability USN-427-1 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH,...

UBBCentral UBB.Threads 5.5.1 - 'message' SQL Injection

Discovered: 07-18-08 By: SecureState R&D Team sasquatch www.securestate.com Background: ----------- SQL injection has previously been discovered https://www.securityfocus.com/bid/14052/ New Details: ------------ UBBThreads is nice enough to encrypt/mask the regular users' passwords in the databas...

UBB.threads 5.5.1 (message) Remote SQL Injection Vulnerability

Exploit for unknown platform in category web applications ============================================================== UBB.threads 5.5.1 message Remote SQL Injection Vulnerability ============================================================== Background: ----------- SQL injection has previously...

CentOS Update for evolution28 CESA-2008:0515 centos4 x86_64

Check for the Version of evolution28 OpenVAS Vulnerability Test CentOS Update for evolution28 CESA-2008:0515 centos4 x8664 Authors: System Generated Check Copyright: Copyright c 2009 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or...

NovaBoard 1.0.0 Multiple Remote Vulnerabilities

No description provided by source. =============================================================================================== Found : brainpillow Dork : "Powered by NovaBoard v1.0.0" Visit : brainpillow.cc, forum.antichat.ru, raz0r.name Mail : [email protected]...

Yet Another NOCC <= 0.1.0 Local File Inclusion Vulnerability

No description provided by source. Yet Another NOCC 0.1.0 = Local File Inclusion Vulnerabilities YANOCC is a simple and fast webmail client which can handle POP3, SMTP, and IMAP servers. YANOCC is based on NOCC's code and is written with PHP4. It features multi-language support, MIME attachments,...

Cross site scripting

Bugzilla 2.x before 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote authenticated users to conduct cross-site scripting XSS and related attacks by uploading HTML and JavaScript attachments that are rendered by web browsers...

CVE-2009-0481

Bugzilla 2.x before 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote authenticated users to conduct cross-site scripting XSS and related attacks by uploading HTML and JavaScript attachments that are rendered by web browsers...

CVE-2009-0481

Bugzilla 2.x before 2.22.7, 3.0 before 3.0.7, 3.2 before 3.2.1, and 3.3 before 3.3.2 allows remote authenticated users to conduct cross-site scripting XSS and related attacks by uploading HTML and JavaScript attachments that are rendered by web browsers...

Yet Another NOCC 0.1.0 - Local File Inclusion

Yet Another NOCC 0.1.0 = Local File Inclusion Vulnerabilities YANOCC is a simple and fast webmail client which can handle POP3, SMTP, and IMAP servers. YANOCC is based on NOCC's code and is written with PHP4. It features multi-language support, MIME attachments, displays HTML messages, address...

Yet Another NOCC 0.1.0 - Local File Inclusion

Yet Another NOCC 0.1.0 - Local File Inclusion Yet Another NOCC 0.1.0 = Local File Inclusion Vulnerabilities YANOCC is a simple and fast webmail client which can handle POP3, SMTP, and IMAP servers. YANOCC is based on NOCC's code and is written with PHP4. It features multi-language support, MIME...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Novell GroupWise WebAccess 6.5x, 7.0, 7.01, 7.02x, 7.03, 7.03HP1a, and 8.0 allow remote attackers to inject arbitrary web script or HTML via the 1 User.id and 2 Library.queryText parameters to gw/webacc, and other vectors involving 3 HTML e-mai...

iDefense Security Advisory 01.13.09: RIM BlackBerry Enterprise Server Attachment Service PDF Distiller 'bitmaps' Heap Overflow Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 iDefense Security Advisory 01.12.09 http://labs.idefense.com/intelligence/vulnerabilities/ Jan 12, 2009 I. BACKGROUND The BlackBerry Enterprise Server is a suite of applications used to connect enterprise email and messaging services to BlackBerry...

OneOrZero Helpdesk tinfo.php Arbitrary File Upload

Binary data 4801.prm...

Microsoft Word RTF Malformed Control Word Variant 2 Remote Code Execution Vulnerability

Description Microsoft Word is prone to a remote code-execution vulnerability. An attacker could exploit this issue by enticing a victim to open a malicious RTF file. Successfully exploiting this issue would allow the attacker to execute arbitrary code in the context of the currently logged-in use...