5 matches found
EUVD-2007-1707
Malware in sbrugna...
Crlf injection
CRLF injection vulnerability in BSMTP.DLL in B21Soft BASP21 2003.0211, and BASP21 Pro 1.0.702.27 and earlier, allows remote attackers to inject arbitrary headers into e-mail messages via CRLF sequences in Subject lines...
CVE-2007-1713
BASP21 (and BASP21 Pro) contains a CRLF/mail header injection flaw in bsmtp.dll (and related executable components) prior to specific versions. An unauthenticated remote attacker can inject arbitrary SMTP headers into messages by exploiting CRLF sequences in Subject lines, potentially altering th...
CVE-2007-1713
CRLF injection vulnerability in BSMTP.DLL in B21Soft BASP21 2003.0211, and BASP21 Pro 1.0.702.27 and earlier, allows remote attackers to inject arbitrary headers into e-mail messages via CRLF sequences in Subject lines...
JVN#86092776: BASP21 vulnerable in handling CRLF sequences
Impact An unauthenticated remote attacker may send an unintended email from a web application which its email function is implemented using BASP21. Solution Products Affected bsmtp.dll included in BASP21 2003.0211 Versions of BASP21 Pro earlier than 1,0,702,27...