Lucene search
K

9 matches found

OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.22 views

Mageia: Security Advisory (MGASA-2019-0367)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.6AI score0.01203EPSS
Exploits1References4
Debian
Debian
added 2021/08/23 2:52 p.m.37 views

[SECURITY] [DLA 2748-1] tnef security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2748-1 [email protected] https://www.debian.org/lts/security/ Thorsten Alteholz August 23, 2021 https://wiki.debian.org/LTS -...

5.5CVSS5.5AI score0.01203EPSS
Exploits1
OpenVAS
OpenVAS
added 2020/09/22 12:0 a.m.11 views

Ubuntu: Security Advisory (USN-4524-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.5CVSS5.5AI score0.01203EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2020/09/21 12:0 a.m.33 views

Ubuntu 16.04 LTS : TNEF vulnerabilities (USN-4524-1)

The remote Ubuntu 16.04 LTS host has a package installed that is affected by a vulnerability as referenced in the USN-4524-1 advisory. Paul Dreik discovered that TNEF incorrectly handled filenames. If a user were tricked into opening a specially crafted email attachment, an attacker could possibl...

5.5CVSS6.6AI score0.01203EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2019/12/08 12:0 a.m.19 views

Fedora Update for tnef FEDORA-2019-5f14b810f8

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.5CVSS5.5AI score0.01203EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2019/12/05 12:0 a.m.32 views

Fedora 30 : tnef (2019-5f14b810f8)

tnef release 1.4.18. ==================== Security release to resolve CVE-2019-18849 in which it may be possible to attack via a crafted email message extracted via tnef. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system websit...

7.5CVSS6.3AI score0.03049EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2019/12/05 12:0 a.m.29 views

Fedora 31 : tnef (2019-815807c020)

tnef release 1.4.18. ==================== Security release to resolve CVE-2019-18849 in which it may be possible to attack via a crafted email message extracted via tnef. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system websit...

7.5CVSS6.3AI score0.03049EPSS
Exploits1References3
NVD
NVD
added 2019/11/11 4:15 a.m.16 views

CVE-2019-18849

In tnef before 1.4.18, an attacker may be able to write to the victim's .ssh/authorizedkeys file via an e-mail message with a crafted winmail.dat application/ms-tnef attachment, because of a heap-based buffer over-read involving strdup...

5.5CVSS5.4AI score0.01203EPSS
Exploits1References7
CVE
CVE
added 2019/11/11 3:21 a.m.197 views

CVE-2019-18849

CVE-2019-18849 affects tnef up to version 1.4.18. The vulnerability is a heap-based buffer over-read involving strdup in handling crafted winmail.dat attachments, which could allow an attacker to write to the victim's .ssh/authorized_keys. Multiple advisories confirm the fix in tnef 1.4.18 across...

5.5CVSS5.5AI score0.01203EPSS
Exploits1References7Affected Software1
Rows per page
Query Builder