EUVD-2007-2168

Malware in sbrugna...

EUVD-2004-0224

Malware in sbrugna...

SUSE CVE-2004-0224

Multiple buffer overflows in 1 iso2022jp.c or 2 shiftjis.c for Courier-IMAP before 3.0.0, Courier before 0.45, and SqWebMail before 4.0.0 may allow remote attackers to execute arbitrary code "when Unicode character is out of BMP range."...

Fedora 29 : roundcubemail (2018-24d1e5a2c3)

Version 1.3.8 This is a service release to update the stable version 1.3 of Roundcube Webmail. It contains fixes to several bugs backported from the master branch including a security fix for a reported XSS vulnerability plus updates to ensure compatibility with PHP 7.3 and recent versions of...

Fedora 28 : roundcubemail (2018-928e15e1db)

Version 1.3.8 This is a service release to update the stable version 1.3 of Roundcube Webmail. It contains fixes to several bugs backported from the master branch including a security fix for a reported XSS vulnerability plus updates to ensure compatibility with PHP 7.3 and recent versions of...

Updated roundcubemail packages fix security vulnerability & bugs

This is a service release to update the stable version 1.3 of Roundcube Webmail. It contains fixes to several bugs backported from the master branch including a security fix for a reported XSS vulnerability in handling invalid style tag content plus updates to ensure compatibility with PHP 7.3 an...

MGASA-2018-0463 Updated roundcubemail packages fix security vulnerability & bugs

This is a service release to update the stable version 1.3 of Roundcube Webmail. It contains fixes to several bugs backported from the master branch including a security fix for a reported XSS vulnerability in handling invalid style tag content plus updates to ensure compatibility with PHP 7.3 an...

Fedora 27 : roundcubemail (2018-d527206a77)

Version 1.3.8 This is a service release to update the stable version 1.3 of Roundcube Webmail. It contains fixes to several bugs backported from the master branch including a security fix for a reported XSS vulnerability plus updates to ensure compatibility with PHP 7.3 and recent versions of...

Courier-IMAP <= 3.0.2-r1 auth_debug() Remote Format String Exploit

No description provided by source. / courier-imap = 3.0.2-r1 Remote Format String Vulnerability exploit Author: ktha at hush dot com Tested on FreeBSD 4.10-RELEASE with courier-imap-3.0.2 Special thanks goes to andrewg for providing the FreeBSD box. Greetings: all the guys from irc pulltheplug co...

CVE-2008-6984

Plesk 8.6.0, when short mail login names SHORTNAMES are enabled, allows remote attackers to bypass authentication and send spam e-mail via a message with 1 a base64-encoded username that begins with a valid shortname, or 2 a username that matches a valid password, as demonstrated using a SMTP and...

Authentication flaw

Plesk 8.6.0, when short mail login names SHORTNAMES are enabled, allows remote attackers to bypass authentication and send spam e-mail via a message with 1 a base64-encoded username that begins with a valid shortname, or 2 a username that matches a valid password, as demonstrated using a SMTP and...

CVE-2008-6984

Plesk 8.6.0, when short mail login names SHORTNAMES are enabled, allows remote attackers to bypass authentication and send spam e-mail via a message with 1 a base64-encoded username that begins with a valid shortname, or 2 a username that matches a valid password, as demonstrated using a SMTP and...

FreeBSD : courier-imap -- format string vulnerability in debug mode (616cf823-f48b-11d8-9837-000c41e2cdad)

An iDEFENSE security advisory describes a format string vulnerability that could be exploited when Courier-IMAP is run in debug mode DEBUGLOGIN set. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML...

Gentoo Security Advisory GLSA 200704-18 (courier-imap)

The remote host is missing updates announced in advisory GLSA 200704-18. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Gentoo Security Advisory GLSA 200704-18 (courier-imap)

The remote host is missing updates announced in advisory GLSA 200704-18. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

Gentoo Security Advisory GLSA 200403-06 (Courier)

The remote host is missing updates announced in advisory GLSA 200403-06. OpenVAS Vulnerability Test $ Description: Auto generated from Gentoo's XML based advisory Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc. http://www.securityspace.com Text descriptions are largely excerpted fr...

FreeBSD Ports: courier-imap

The remote host is missing an update to the system as announced in the referenced advisory. VID 616cf823-f48b-11d8-9837-000c41e2cdad OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

FreeBSD Ports: courier

The remote host is missing an update to the system as announced in the referenced advisory. VID 98bd69c3-834b-11d8-a41f-0020ed76ef5a OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...

FreeBSD Ports: courier-imap

The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

GLSA-200704-18 : Courier-IMAP: Remote execution of arbitrary code

The remote host is affected by the vulnerability described in GLSA-200704-18 Courier-IMAP: Remote execution of arbitrary code CJ Kucera has discovered that some Courier-IMAP scripts don't properly handle the XMAILDIR variable, allowing for shell command injection. Impact : A remote attacker could...