Lucene search
K

234 matches found

OSV
OSV
added 2023/07/11 12:0 a.m.22 views

CVE-2022-48521

An issue was discovered in OpenDKIM through 2.10.3, and 2.11.x through 2.11.0-Beta2. It fails to keep track of ordinal numbers when removing fake Authentication-Results header fields, which allows a remote attacker to craft an e-mail message with a fake sender address such that programs that rely...

5.3CVSS7.1AI score0.00575EPSS
Exploits0References4
GithubExploit
GithubExploit
added 2023/03/22 11:0 a.m.504 views

Exploit for Improper Input Validation in Microsoft

CVE-2023-23397 This script allows to create TNEF-encoded Outl...

9.8CVSS10AI score0.97408EPSS
Exploits18
SUSE CVE
SUSE CVE
added 2023/02/15 5:53 a.m.4 views

SUSE CVE-2011-1764

Format string vulnerability in the dkimeximverifyfinish function in src/dkim.c in Exim before 4.76 might allow remote attackers to execute arbitrary code or cause a denial of service daemon crash via format string specifiers in data used in DKIM logging, as demonstrated by an identity field...

7.5CVSS9.5AI score0.0394EPSS
Exploits0References5
SUSE CVE
SUSE CVE
added 2023/02/15 5:43 a.m.3 views

SUSE CVE-2012-5671

Heap-based buffer overflow in the dkimeximquerydnstxt function in dkim.c in Exim 4.70 through 4.80, when DKIM support is enabled and aclsmtpconnect and aclsmtprcpt are not set to "warn control = dkimdisableverify," allows remote attackers to execute arbitrary code via an email from a malicious DN...

6.8CVSS8.4AI score0.08382EPSS
Exploits0References4
Malwarebytes
Malwarebytes
added 2022/05/26 9:46 a.m.17 views

If you get an email saying “Item stopped due to unpaid customs fee”, it’s a fake

Our spam traps recently caught a phishing scam that neatly illustrates some of the tactics scammers use routinely to avoid both human intuition, and automatic detection. The scam starts with an unsolicited email, of course… The scam email is ostensibly from the Post Office, an instantly...

6.9AI score
Exploits0
Rockylinux
Rockylinux
added 2022/05/17 7:16 a.m.21 views

new packages: perl-Mail-DKIM

An update is available for perl-Mail-DKIM. This update affects Rocky Linux 9. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list For detailed information on changes in this release, see the Rocky...

2.2AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2021/09/01 4:0 p.m.38 views

Get free DMARC visibility with Valimail Authenticate and Microsoft Office 365

This blog post is part of the Microsoft Intelligent Security Association guest blog series. Learn more about MISA. Phishing and email spoofing not only erode brand trust but also leave recipients vulnerable to financial loss and serious invasions of privacy. These tactics have been around for...

7.3AI score
Exploits0
Fedora
Fedora
added 2021/06/26 1:8 a.m.99 views

[SECURITY] Fedora 33 Update: php-phpmailer6-6.5.0-1.fc33

PHPMailer - A full-featured email creation and transfer class for PHP Class Features Probably the world's most popular code for sending email from PHP! Used by many open-source projects: WordPress, Drupal, 1CRM, SugarCRM, Yii, Joomla! and many more Integrated SMTP support - send without a local...

8.1CVSS8.3AI score0.02803EPSS
Exploits0
Fedora
Fedora
added 2021/06/26 1:1 a.m.87 views

[SECURITY] Fedora 34 Update: php-phpmailer6-6.5.0-1.fc34

PHPMailer - A full-featured email creation and transfer class for PHP Class Features Probably the world's most popular code for sending email from PHP! Used by many open-source projects: WordPress, Drupal, 1CRM, SugarCRM, Yii, Joomla! and many more Integrated SMTP support - send without a local...

8.1CVSS8.3AI score0.02803EPSS
Exploits0
Securelist
Securelist
added 2021/06/03 10:0 a.m.212 views

Email spoofing: how attackers impersonate legitimate senders

Introduction In a nutshell, email spoofing is the creation of fake emails that seem legitimate. This article analyzes the spoofing of email addresses through changing the From header, which provides information about the senders name and address. SMTP Simple Mail Transfer Protocol, the main email...

6.5AI score
Exploits0
ArchLinux
ArchLinux
added 2021/05/19 12:0 a.m.181 views

[ASA-202105-13] opendmarc: multiple issues

Arch Linux Security Advisory ASA-202105-13 ========================================== Severity: Medium Date : 2021-05-19 CVE-ID : CVE-2019-20790 CVE-2020-12272 Package : opendmarc Type : multiple issues Remote : Yes Link : https://security.archlinux.org/AVG-1375 Summary ======= The package...

9.8CVSS1.2AI score0.02658EPSS
Exploits2References15
OpenVAS
OpenVAS
added 2021/05/13 12:0 a.m.24 views

Fedora: Security Advisory for php-phpmailer6 (FEDORA-2021-ecf4fed550)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.7AI score
Exploits0References2
Fedora
Fedora
added 2021/05/12 4:13 p.m.59 views

[SECURITY] Fedora 33 Update: php-phpmailer6-6.4.1-1.fc33

PHPMailer - A full-featured email creation and transfer class for PHP Class Features Probably the world's most popular code for sending email from PHP! Used by many open-source projects: WordPress, Drupal, 1CRM, SugarCRM, Yii, Joomla! and many more Integrated SMTP support - send without a local...

9.8CVSS9.1AI score0.03095EPSS
Exploits0
CNVD
CNVD
added 2021/05/07 12:0 a.m.14 views

Exim Out-of-Bounds Read Vulnerability

Exim was developed at Cambridge University as a Message Transfer Agent MTA for Unix systems connected to the Internet. Exim suffers from an out-of-bounds read vulnerability that stems from pdkimfinishbodyhash not validating the relationship between sig-bodyhash.len and b-bh.len, which can be...

7.5CVSS6.2AI score0.02712EPSS
Exploits1References1
NVD
NVD
added 2021/05/06 1:15 p.m.14 views

CVE-2020-28025

Exim 4 before 4.94.2 allows Out-of-bounds Read because pdkimfinishbodyhash does not validate the relationship between sig-bodyhash.len and b-bh.len; thus, a crafted DKIM-Signature header might lead to a leak of sensitive information from process memory...

7.5CVSS0.02712EPSS
Exploits1References1
Prion
Prion
added 2021/05/06 1:15 p.m.28 views

Design/Logic Flaw

Exim 4 before 4.94.2 allows Out-of-bounds Read because pdkimfinishbodyhash does not validate the relationship between sig-bodyhash.len and b-bh.len; thus, a crafted DKIM-Signature header might lead to a leak of sensitive information from process memory...

5CVSS8.1AI score0.02712EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/05/06 4:36 a.m.32 views

CVE-2020-28025

Exim 4 before 4.94.2 allows Out-of-bounds Read because pdkimfinishbodyhash does not validate the relationship between sig-bodyhash.len and b-bh.len; thus, a crafted DKIM-Signature header might lead to a leak of sensitive information from process memory...

8.3AI score0.02712EPSS
Exploits1References1
CVE
CVE
added 2021/05/06 4:36 a.m.334 views

CVE-2020-28025

Exim 4 prior to 4.94.2 is affected by CVE-2020-28025 (Out-of-bounds Read). The flaw is due to pdkim_finish_bodyhash not validating the relationship between sig->bodyhash.len and b->bh.len, which can allow leakage of sensitive information from process memory via a crafted DKIM-Signature head...

7.5CVSS7AI score0.02712EPSS
Exploits1References1Affected Software1
AlpineLinux
AlpineLinux
added 2021/05/06 4:36 a.m.46 views

CVE-2020-28025

Exim 4 before 4.94.2 allows Out-of-bounds Read because pdkimfinishbodyhash does not validate the relationship between sig-bodyhash.len and b-bh.len; thus, a crafted DKIM-Signature header might lead to a leak of sensitive information from process memory...

7.5CVSS7.5AI score0.02712EPSS
Exploits1References1
Debian CVE
Debian CVE
added 2021/05/06 4:36 a.m.27 views

CVE-2020-28025

Exim 4 before 4.94.2 allows Out-of-bounds Read because pdkimfinishbodyhash does not validate the relationship between sig-bodyhash.len and b-bh.len; thus, a crafted DKIM-Signature header might lead to a leak of sensitive information from process memory...

7.5CVSS7.8AI score0.02712EPSS
Exploits1
Rows per page
Query Builder