295 matches found
CVE-2001-0676
Directory traversal vulnerability in Rit Research Labs The Bat! 1.48f and earlier allows a remote attacker to create arbitrary files via a "dot dot" attack in the filename for an attachment...
CVE-2001-0675
Rit Research Labs The Bat! 1.51 for Windows allows a remote attacker to cause a denial of service by sending an email to a user's account containing a carriage return that is not followed by a line feed...
CVE-2001-0398
The BAT! mail client allows remote attackers to bypass user warnings of an executable attachment and execute arbitrary commands via an attachment whose file name contains many spaces, which also causes the BAT! to misrepresent the attachment's type with a different icon...
CVE-2001-0398
The BAT! mail client allows remote attackers to bypass user warnings of an executable attachment and execute arbitrary commands via an attachment whose file name contains many spaces, which also causes the BAT! to misrepresent the attachment's type with a different icon...
CVE-2001-0398
The BAT! mail client is affected by CVE-2001-0398. An attachment whose file name contains many spaces can bypass the user warning for executable attachments and allow remote attackers to execute arbitrary commands, while also causing the client to misrepresent the attachment’s type with a differe...
Rit Research Labs The Bat! 1.x - Missing Linefeeds Denial of Service
Rit Research Labs The Bat! 1.x - Missing Linefeeds Denial of Service source: https://www.securityfocus.com/bid/2636/info "The Bat!" is an MUA for Windows by Rit Research Labs. "The Bat!" is vulnerable to a remote denial of service attack. Email messages in which carriage return CR characters are...
SECURITY.NNOV: The Bat! <cr> bug
SECURITY.NNOV URL: http://www.security.nnov.ru Topic: The Bat! cr bug Application: The Bat! 1.51 latest Vendor: RitLabs Category: Denial of Service Risk Factor: Low Remote: Yes Vendor Contacted: 13.04.2001 Software URL: http://www.thebat.net Vendor URL: http://www.ritlabs.com +Introduction: The...
The Bat! <cr> bug
SECURITY.NNOV URL: http://www.security.nnov.ru/advisories Topic: The Bat! bug Application: The Bat! 1.51 latest Vendor: RitLabs Category: Denial of Service Risk Factor: Low Remote: Yes Vendor Contacted: 13.04.2001 Software URL: http://www.thebat.net Vendor URL: http://www.ritlabs.com +Introductio...
~..~!guano
Wednesday, 28 March, 2001 The BAT! .. is a feisty multi-tasking email client that is rapidly gaining popularity and for good reason. Cursory examination of it reveals solid effective security measures on all fronts, including non-browser dependent html viewing with on/off switch, random named fil...
Дырка в The Bat! (extention spoofing)
При показе вложенного файла имя файла обрезается, подобрав длину имени можно заставить файл появиться с безобидной картинкой, при запуске не будет выдано предупреждение...
thebat.traverse.txt
SECURITY.NNOV advisory - The Bat! directory traversal Topic: The Bat! attachments directory traversal Author: 3APA3A Affected Software: The Bat! Version wish her good luck, she will need it : Background: The Bat! is extremely convenient commercially available MUA for Windows will be best one then...
Дырка в The Bat! (обратный путь в директориях)
Если The Bat! сконфигурирован на отдельное хранение вложенных файлов, если имя файла зашифровано согласно RFC 2047 base 64 или Quoted Printable и содержит '..' то файл будет помещен в директорию более высокого уровня, что позволяет сохранить файл в любой каталог на том же диске...
SECURITY.NNOV advisory - The Bat! directory traversal (public release)
This advisory is being provided to you under the policy documented at http://www.wiretrip.net/rfp/policy.html. SECURITY.NNOV advisory - The Bat! directory traversal Topic: The Bat! attachments directory traversal Author: 3APA3A [email protected] Affected Software: The Bat! Version = 1.48f...
The Bat! directory traversal
Topic: The Bat! attachments directory traversal Author: 3APA3A Affected Software: The Bat! Version wish her good luck, she will need it : Background: The Bat! is extremely convenient commercially available MUA for Windows will be best one then problem will be fixed, I believe with lot of features...
sambar.bat.txt
PRODUCT ------- The Sambar Server is a multi-threaded HTTP, FTP and Proxy server for Windows NT and Windows 95. AFFECTED VERSIONS ----------------- All version of Sambar server running under Windows NT 4.0 and Windows 2000. Windows 98 version is vulnerable. VULNERABILITY DESCRIPTION...