15 matches found
EUVD-2006-0339
Malware in sbrugna...
EUVD-2004-0911
Malware in sbrugna...
EUVD-2002-0466
Malware in sbrugna...
CVE-2004-0913
Unknown vulnerability in ecartis 0.x before 0.129a+1.0.0-snap20020514-1.3 and 1.x before 1.0.0+cvs.20030911-8 allows attackers in the same domain to gain administrator privileges and modify configuration...
CVE-2004-0913
Unknown vulnerability in ecartis 0.x before 0.129a+1.0.0-snap20020514-1.3 and 1.x before 1.0.0+cvs.20030911-8 allows attackers in the same domain to gain administrator privileges and modify configuration...
Debian DSA-271-1 : ecartis - unauthorized password change
A problem has been discovered in ecartis, a mailing list manager, formerly known as listar. This vulnerability enables an attacker to reset the password of any user defined on the list server, including the list admins. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and...
CVE-2003-0782
Multiple buffer overflows in ecartis before 1.0.0 allow attackers to cause a denial of service and possibly execute arbitrary code...
CVE-2003-0781
Unknown vulnerability in ecartis before 1.0.0 does not properly validate user input, which allows attackers to obtain mailing list passwords...
CVE-2003-0162
Ecartis 1.0.0 formerly listar before snapshot 20030227 allows remote attackers to reset passwords of other users and gain privileges by modifying hidden form fields in the HTML page...
DSA-271 ecartis - unauthorized password change
Bulletin has no description...
Ecardis Password Reseting Vulnerability
Hi, I don't know if someone has discovered this before but Ecartis 1.0.0 former listar contains a vulnerability that enables an attacker to reset passwords of any user defined on the list server, including the list admins. After logging on as a non-priviledged user, Ecartis enables the user to...
CVE-2002-0468
Buffer overflows in Ecartis formerly Listar 1.0.0 in snapshot 20020427 and earlier allow local users to gain privileges via 1 a long command line argument, which is not properly handled in core.c, or possibly via bad uses of sprintf in 2 moderate.c, 3 lcgi.c, 4 fileapi.c, 5 cookie.c, 6 codes.c, o...
CVE-2002-0467
Buffer overflows in Ecartis formerly Listar 1.0.0 before snapshot 20020125 allows remote attackers to execute arbitrary code via 1 addressmatch of mystring.c or 2 other functions in tolist.c...
CVE-2002-0468
Buffer overflows in Ecartis formerly Listar 1.0.0 in snapshot 20020427 and earlier allow local users to gain privileges via 1 a long command line argument, which is not properly handled in core.c, or possibly via bad uses of sprintf in 2 moderate.c, 3 lcgi.c, 4 fileapi.c, 5 cookie.c, 6 codes.c, o...
CVE-2002-0469
Ecartis formerly Listar 1.0.0 in snapshot 20020125 and earlier does not properly drop privileges when Ecartis is installed setuid-root, "lock-to-user" is not set, and ecartis is called by certain MTA's, which could allow local users to gain privileges...