CVE-2000-0990

cmd5checkpw 0.21 and earlier allows remote attackers to cause a denial of service via an "SMTP AUTH" command with an unknown username...

DoS by SMTP AUTH command in IPSwitch IMail server

Dear folks, I found a kind of DoS to handle SMTP AUTH command in IPSwitch IMail server version 6.0.5. IPSwitch ships a product titled IMail, an email server for usage on NT servers serving SMTP, POP3, IMAP4, LDAP etc. It supports SMTP AUTH commands RFC2554 and several authenticate methods to...

DoS против IMAIL

Переполнение буфера при длинном имени сервера в HTTP-запросе и в SMTP-AUTH команде...

CVE-2000-0301

CVE-2000-0301 affects Ipswitch IMAIL server 6.02 and earlier. The issue enables remote attackers to cause a denial of service by sending the AUTH CRAM-MD5 command, impacting availability. The record lists a network-exposed attack with no authentication and a partial availability impact (CVSS v2 b...

CVE-2000-0301

Ipswitch IMAIL server 6.02 and earlier allows remote attackers to cause a denial of service via the AUTH CRAM-MD5 command...

DoS против IMail

ВО время авторизации почтового клиента с использованием SMTP-AUTH блокируется библиотека авторизации и другие клиенты не могут быть авторизованы, при этом не используется таймаут. Ошибка в реализации протокола авторизации приводит к тому, что часть стандартных почтовых клиентов блокируют...

Re: IMAIL (Ipswitch) DoS with Eudora (Qualcomm)

Ipswitch blames BOTH NetScape AND Eudora for not following RFC's, but does nothing to control the situation. It is very simple to deny service to any IMAIL 5.xx or 6.xx server as follows. IMAIL allows SMTP AUTH using various methods, including CRAM-MD5 and LOGIN If a Eudora 4.3 client attaches to...

CVE-2000-0301

Ipswitch IMAIL server 6.02 and earlier allows remote attackers to cause a denial of service via the AUTH CRAM-MD5 command...

CVE-1999-0822

Buffer overflow in Qpopper qpop 3.0 allows remote root access via AUTH command...

SCO Open Server 5.0.5 - userOsa Symlink

SCO Open Server 5.0.5 - userOsa Symlink source: https://www.securityfocus.com/bid/701/info Under certain versions of SCO OpenServer there exists a symlink vulnerability which can be exploited to overwrite any file which is group writable by the 'auth' group. The problem in particular is in the th...

SCO Open Server 5.0.5 - 'userOsa' Symlink

source: https://www.securityfocus.com/bid/701/info Under certain versions of SCO OpenServer there exists a symlink vulnerability which can be exploited to overwrite any file which is group writable by the 'auth' group. The problem in particular is in the the /etc/sysadm.d/bin/userOsa executable...

Linux_mini-sql_bof.txt

hi, i was looking for an exploitable buffer overflow in w3-msql from Hughes Technology since there was many security flaws inside. There is a static variable named PrivateScript in main function with a 255 chars size length. No luck ! main finish everywhere with an exit call. The http internal...

DUO-PSA-2015-001: Duo Product Security Advisory

Duo Product Security Advisory Advisory ID: DUO-PSA-2015-001 Original Publication Date: 2015-02-03 Revision Date: 2015-02-10 Status: Confirmed, Fixed Document Revision: 3 Overview Duo Security has identified an issue in certain versions of the Duo Web SDK that could allow attackers to bypass prima...

PT-2008-6908 · Opensuse +2 · Opensuse +4

Name of the Vulnerable Software and Affected Versions: linux-headers-2.6.24-etchnhalf.1-all-mips versions 2.6.24-etchnhalf.1 linux-headers-2.6.24-etchnhalf.1-r4k-ip22 versions 2.6.24-etchnhalf.1 linux-headers-2.6.24-etchnhalf.1-r5k-ip32 versions 2.6.24-etchnhalf.1...