Lucene search
K

234 matches found

Malwarebytes
Malwarebytes
added 2024/01/07 11:53 a.m.39 views

Explained: SMTP smuggling

SMTP smuggling is a technique that allows an attacker to send an email from pretty much any address they like. The intended goal is email spoofing—sending emails with false sender addresses. Email spoofing allows criminals to make malicious emails more believable. Let’s take a closer look at what...

7AI score
Exploits0
The Hacker News
The Hacker News
added 2024/01/03 10:42 a.m.59 views

SMTP Smuggling: New Flaw Lets Attackers Bypass Security and Spoof Emails

A new exploitation technique called Simple Mail Transfer Protocol SMTP smuggling can be weaponized by threat actors to send spoofed emails with fake sender addresses while bypassing security measures. "Threat actors could abuse vulnerable SMTP servers worldwide to send malicious emails from...

7.2AI score
Exploits0
GithubExploit
GithubExploit
added 2023/12/26 5:2 p.m.519 views

Exploit for Insufficient Verification of Data Authenticity in Postfix

CVE-2023-51764 Postfix SMTP Smuggling - Expect Script POC sen...

5.3CVSS5.2AI score0.02598EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2023/12/03 12:0 a.m.56 views

Debian dla-3680 : libopendkim-dev - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3680 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3680-1 [email protected] https://www.debian.org/lts/security/...

5.3CVSS5.7AI score0.00575EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2023/09/11 12:0 a.m.24 views

Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS : OpenDMARC vulnerabilities (USN-6356-1)

The remote Ubuntu 16.04 ESM / 18.04 LTS / 20.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6356-1 advisory. Jianjun Chen, Vern Paxson and Jian Jiang discovered that OpenDMARC incorrectly handled certain inputs. If a user or an automated...

9.8CVSS7.2AI score0.03684EPSS
Exploits2References3
Fedora
Fedora
added 2023/09/07 1:43 a.m.22 views

[SECURITY] Fedora 37 Update: php-phpmailer6-6.8.1-1.fc37

PHPMailer - A full-featured email creation and transfer class for PHP Class Features Probably the world's most popular code for sending email from PHP! Used by many open-source projects: WordPress, Drupal, 1CRM, SugarCRM, Yii, Joomla! and many more Integrated SMTP support - send without a local...

7.4AI score
Exploits0
Fedora
Fedora
added 2023/09/07 1:29 a.m.13 views

[SECURITY] Fedora 38 Update: php-phpmailer6-6.8.1-1.fc38

PHPMailer - A full-featured email creation and transfer class for PHP Class Features Probably the world's most popular code for sending email from PHP! Used by many open-source projects: WordPress, Drupal, 1CRM, SugarCRM, Yii, Joomla! and many more Integrated SMTP support - send without a local...

7.4AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2023/08/28 12:0 a.m.24 views

Debian dla-3546 : libopendmarc-dev - security update

The remote Debian 10 host has packages installed that are affected by a vulnerability as referenced in the dla-3546 advisory. - ------------------------------------------------------------------------- Debian LTS Advisory DLA-3546-1 [email protected] https://www.debian.org/lts/security/...

5.3CVSS6.3AI score0.02136EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2023/07/28 12:0 a.m.12 views

Debian dla-3509 : libmail-dkim-perl - security update

The remote Debian 10 host has a package installed that is affected by a vulnerability as referenced in the dla-3509 advisory. ------------------------------------------------------------------------- Debian LTS Advisory DLA-3509-1 [email protected] https://www.debian.org/lts/security/...

5.5AI score
Exploits0References2
OpenVAS
OpenVAS
added 2023/07/28 12:0 a.m.8 views

Debian: Security Advisory (DLA-3509-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5AI score
Exploits0References4
Debian
Debian
added 2023/07/27 8:4 p.m.6 views

[SECURITY] [DLA 3509-1] libmail-dkim-perl update

Debian LTS Advisory DLA-3509-1 [email protected] https://www.debian.org/lts/security/ Markus Koschany July 27, 2023 https://wiki.debian.org/LTS Package : libmail-dkim-perl Version : 0.54-1+deb10u1 Debian Bug : 1039489 It was discovered that the domain check in libmail-dkim-perl, a Perl...

5.8AI score
Exploits0
OSV
OSV
added 2023/07/27 12:0 a.m.10 views

DLA-3509-1 libmail-dkim-perl - security update

Bulletin has no description...

7.2AI score
Exploits0
NVD
NVD
added 2023/07/11 8:15 p.m.21 views

CVE-2022-48521

An issue was discovered in OpenDKIM through 2.10.3, and 2.11.x through 2.11.0-Beta2. It fails to keep track of ordinal numbers when removing fake Authentication-Results header fields, which allows a remote attacker to craft an e-mail message with a fake sender address such that programs that rely...

5.3CVSS5.1AI score0.00575EPSS
Exploits0References2
Prion
Prion
added 2023/07/11 8:15 p.m.15 views

Authentication flaw

An issue was discovered in OpenDKIM through 2.10.3, and 2.11.x through 2.11.0-Beta2. It fails to keep track of ordinal numbers when removing fake Authentication-Results header fields, which allows a remote attacker to craft an e-mail message with a fake sender address such that programs that rely...

5CVSS5.2AI score0.00575EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2023/07/11 8:15 p.m.31 views

CVE-2022-48521

An issue was discovered in OpenDKIM through 2.10.3, and 2.11.x through 2.11.0-Beta2. It fails to keep track of ordinal numbers when removing fake Authentication-Results header fields, which allows a remote attacker to craft an e-mail message with a fake sender address such that programs that rely...

5.3CVSS6.2AI score0.00575EPSS
Exploits0References2
OSV
OSV
added 2023/07/11 8:15 p.m.9 views

UBUNTU-CVE-2022-48521

An issue was discovered in OpenDKIM through 2.10.3, and 2.11.x through 2.11.0-Beta2. It fails to keep track of ordinal numbers when removing fake Authentication-Results header fields, which allows a remote attacker to craft an e-mail message with a fake sender address such that programs that rely...

5.3CVSS5.8AI score0.00575EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/07/11 12:0 a.m.36 views

CVE-2022-48521

An issue was discovered in OpenDKIM through 2.10.3, and 2.11.x through 2.11.0-Beta2. It fails to keep track of ordinal numbers when removing fake Authentication-Results header fields, which allows a remote attacker to craft an e-mail message with a fake sender address such that programs that rely...

5.4AI score0.00575EPSS
Exploits0References2
CVE
CVE
added 2023/07/11 12:0 a.m.61 views

CVE-2022-48521

OpenDKIM CVE-2022-48521 affects OpenDKIM up to 2.10.3 and 2.11.x up to 2.11.0-Beta2. The issue: OpenDKIM fails to track ordinal numbers when removing fake Authentication-Results header fields, allowing a remote attacker to craft an email that appears to have a valid DKIM signature when it does no...

5.3CVSS5AI score0.00575EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2023/07/11 12:0 a.m.23 views

CVE-2022-48521

An issue was discovered in OpenDKIM through 2.10.3, and 2.11.x through 2.11.0-Beta2. It fails to keep track of ordinal numbers when removing fake Authentication-Results header fields, which allows a remote attacker to craft an e-mail message with a fake sender address such that programs that rely...

5.3CVSS7.1AI score0.00575EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2023/07/11 12:0 a.m.21 views

CVE-2022-48521

An issue was discovered in OpenDKIM through 2.10.3, and 2.11.x through 2.11.0-Beta2. It fails to keep track of ordinal numbers when removing fake Authentication-Results header fields, which allows a remote attacker to craft an e-mail message with a fake sender address such that programs that rely...

5.3CVSS6.9AI score0.00575EPSS
Exploits0References2
Rows per page
Query Builder