3 matches found
[Full-disclosure] [Sec-1 Ltd] Advisory: MailMarshal Spam Quarantine Password Retrieval Vulnerability
SEC-1 LTD. www.sec-1.com Security Advisory Advisory Name: MailMarshal Spam Quarantine Password Retrieval Vulnerability Release Date: 17-06-2007 Application: MailMarshal SMTP 6.2.0.x Platform: Microsoft Windows Severity: Password Retrieval Author: Gary O'leary-Steele Reported: See time line sectio...
CVE-2007-3796
CVE-2007-3796 affects MailMarshal SMTP’s Spam Quarantine HTTP interface. The vulnerability stems from the password reset feature, where a UserId value with excessive trailing whitespace followed by a malicious value can trigger SQL buffer truncation due to length inconsistencies, potentially allo...
KLA10247 Vulnerability in MailMArshal SMTP
An unspecified vulnerability was found in MailMarshal SMTP. By exploiting this vulnerability malicious users can modify arbitrary account information. This vulnerability can be exploited remotely via a specially designed UserId variable. Original advisories - Related products M86-MailMarshal-SMTP...