Lucene search
+L

8 matches found

Tenable Nessus
Tenable Nessus
added 2005/05/04 12:0 a.m.25 views

Debian DSA-720-1 : smartlist - wrong input processing

Jeroen van Wolffelaar noticed that the confirm add-on of SmartList, the listmanager used on lists.debian.org, which is used on that host as well, could be tricked to subscribe arbitrary addresses to the lists. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package...

7.5CVSS5.6AI score0.012EPSS
Exploits0References2
NVD
NVD
added 2005/05/03 4:0 a.m.16 views

CVE-2005-0157

The confirm add-on in SmartList 3.15 and earlier allows attackers to subscribe arbitrary e-mail addresses by using a valid cookie that specifies an address other than the address for which the cookie was assigned...

7.5CVSS6.5AI score0.012EPSS
Exploits0References1
Cvelist
Cvelist
added 2005/05/03 4:0 a.m.26 views

CVE-2005-0157

The confirm add-on in SmartList 3.15 and earlier allows attackers to subscribe arbitrary e-mail addresses by using a valid cookie that specifies an address other than the address for which the cookie was assigned...

6.4AI score0.012EPSS
Exploits0References1
CVE
CVE
added 2005/05/03 4:0 a.m.51 views

CVE-2005-0157

CVE-2005-0157 affects SmartList’s confirm add-on (3.15 and earlier). The issue allows an attacker to subscribe arbitrary e-mail addresses by exploiting a valid cookie that encodes a different address than the one tied to the cookie. Public advisories (Debian DSA-720-1) note this as a remote input...

7.5CVSS6.5AI score0.012EPSS
Exploits0References1Affected Software1
Debian CVE
Debian CVE
added 2005/05/03 4:0 a.m.52 views

CVE-2005-0157

The confirm add-on in SmartList 3.15 and earlier allows attackers to subscribe arbitrary e-mail addresses by using a valid cookie that specifies an address other than the address for which the cookie was assigned...

7.5CVSS5.1AI score0.012EPSS
Exploits0
UbuntuCve
UbuntuCve
added 2005/05/03 4:0 a.m.19 views

CVE-2005-0157

The confirm add-on in SmartList 3.15 and earlier allows attackers to subscribe arbitrary e-mail addresses by using a valid cookie that specifies an address other than the address for which the cookie was assigned...

7.5CVSS6AI score0.012EPSS
Exploits0References1
OSV
OSV
added 2005/05/03 4:0 a.m.1 views

DEBIAN-CVE-2005-0157

The confirm add-on in SmartList 3.15 and earlier allows attackers to subscribe arbitrary e-mail addresses by using a valid cookie that specifies an address other than the address for which the cookie was assigned...

7.5CVSS6.6AI score0.012EPSS
Exploits0References1
OSV
OSV
added 2005/05/03 12:0 a.m.14 views

DSA-720-1 smartlist - wrong input processing

Bulletin has no description...

7.5CVSS6.3AI score0.012EPSS
Exploits0
Rows per page
Query Builder