Lucene search
K

12 matches found

OpenVAS
OpenVAS
added 2023/03/08 12:0 a.m.18 views

Debian: Security Advisory (DLA-383-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.02532EPSS
Exploits0References2
OSV
OSV
added 2016/04/11 9:59 p.m.7 views

CVE-2015-8708

Stack-based buffer overflow in the conveuctojis function in codeconv.c in Claws Mail 3.13.1 allows remote attackers to have unspecified impact via a crafted email, involving Japanese character set conversion. NOTE: this vulnerability exists because of an incomplete fix for CVE-2015-8614...

7.3CVSS7.6AI score
Exploits0References2
CVE
CVE
added 2016/04/11 9:0 p.m.72 views

CVE-2015-8708

Claws Mail 3.13.1 is affected by CVE-2015-8708 (and CVE-2015-8614) due to stack-based buffer overflows in conv_euctojis (and related conv_jistoeuc/sjistoeuc) in codeconv.c, enabling remote exploitation via a crafted email involving Japanese character set conversion. The issue arises from an incom...

7.5CVSS5.8AI score0.01269EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.23 views

Fedora 23 : claws-mail-3.13.2-1.fc23 (2016-2ec7f779f2)

Update from 3.13.1 to 3.13.2 for bug-fixes. Includes security fix for CVE-2015-8708. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

7.5CVSS7.2AI score0.01269EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2016/03/04 12:0 a.m.16 views

Fedora 22 : claws-mail-3.13.2-1.fc22 (2016-b211281b8e)

Update from 3.13.1 to 3.13.2 for bug-fixes. Includes security fix for CVE-2015-8708. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible without...

7.5CVSS7.2AI score0.01269EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2016/02/18 12:0 a.m.16 views

Mageia: Security Advisory (MGASA-2016-0067)

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS5.6AI score0.01269EPSS
Exploits0References6
Mageia
Mageia
added 2016/02/17 7:6 p.m.27 views

Updated claws-mail packages fix CVE-2015-8708

Updated claws-mail fix security vulnerabilities A stack-based buffer overflow has been found in conveuctojis after applying incomplete patch for CVE-2015-8614. In conveuctojis the comparison is with outlen - 3, but each pass through the loop uses up to 5 bytes and the rest of the function may add...

7.5CVSS7.6AI score0.01269EPSS
Exploits0References4
OSV
OSV
added 2016/02/17 7:6 p.m.7 views

MGASA-2016-0067 Updated claws-mail packages fix CVE-2015-8708

Updated claws-mail fix security vulnerabilities A stack-based buffer overflow has been found in conveuctojis after applying incomplete patch for CVE-2015-8614. In conveuctojis the comparison is with outlen - 3, but each pass through the loop uses up to 5 bytes and the rest of the function may add...

7.5CVSS7.4AI score0.01269EPSS
Exploits0References5
OpenVAS
OpenVAS
added 2016/02/08 12:0 a.m.20 views

Fedora Update for claws-mail FEDORA-2016-2

The remote host is missing an update for the SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.2AI score0.01269EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2016/01/13 12:0 a.m.30 views

Debian DLA-383-1 : claws-mail security update

'DrWhax' of the Tails project reported that Claws Mail is missing range checks in some text conversion functions. A remote attacker could exploit this to run arbitrary code under the account of a user that receives a message from them using Claws Mail. CVE-2015-8614 There were no checks on the...

7.5CVSS7.7AI score0.02532EPSS
Exploits0References3
Debian
Debian
added 2016/01/12 11:3 p.m.28 views

[SECURITY] [DLA 383-1] claws-mail security update

Package : claws-mail Version : 3.7.6-4+squeeze2 CVE ID : CVE-2015-8614 CVE-2015-8708 "DrWhax" of the Tails project reported that Claws Mail is missing range checks in some text conversion functions. A remote attacker could exploit this to run arbitrary code under the account...

7.5CVSS7.4AI score0.02532EPSS
Exploits0
OSV
OSV
added 2016/01/12 12:0 a.m.27 views

DLA-383-1 claws-mail - security update

Bulletin has no description...

7.5CVSS5.2AI score0.02532EPSS
Exploits0
Rows per page
Query Builder