FreeBSD : elm -- remote buffer overflow in Expires header (f66e011d-13ff-11da-af41-0004614cc33d)

Ulf Harnhammar has discovered a remotely exploitable buffer overflow in Elm e-mail client when parsing the Expires header of an e-mail message : The attacker only needs to send the victim an e-mail message. When the victim with that message in his or her inbox starts Elm or simply views the inbox...

Critical: Red Hat Security Advisory: mozilla security update

Updated mozilla packages that fix several security bugs are now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. Updated 24 Apr 2006 The erratum text has been updated to include the details of additional issues that were fixed by thes...

MS06-016: Vulnerability in Outlook Express Could Allow Remote Code Execution (911567)

The remote host is running a version of Microsoft Outlook Express that may allow an attacker to execute arbitrary code on the remote host. To exploit this flaw, an attacker would need to send a malformed Windows Address Book .wab file to a victim on the remote host and have him open the file. C...

Microsoft Internet Explorer HTML Tag Memory Corruption Vulnerability

Description Microsoft Internet Explorer is prone to a memory-corruption vulnerability. This is related to the handling of certain HTML tags. Attackers could exploit this issue via a malicious web page to execute arbitrary code in the context of the currently logged-in user. They could also use HT...

linux-flashplugin -- arbitrary code execution vulnerability

Adobe reports: Critical vulnerabilities have been identified in Flash Player that could allow an attacker who successfully exploits these vulnerabilities to take control of the affected system. A malicious SWF must be loaded in Flash Player by the user for an attacker to exploit these...

RevilloC MailServer 1.21 (USER) Remote Buffer Overflow Exploit PoC

Exploit for unknown platform in category remote exploits ================================================================== RevilloC MailServer 1.21 USER Remote Buffer Overflow Exploit PoC ================================================================== !/usr/bin/perl -w revilloC mail server Po...

RevilloC MailServer 1.21 - USER Remote Buffer Overflow

RevilloC MailServer 1.21 - USER Remote Buffer Overflow !/usr/bin/perl -w revilloC mail server PoC exploit for xp sp1 Discovered securma massine from MorX Security Research Team http://www.morx.org. RevilloC is a MailServer and Proxy v 1.21 http://www.revilloC.com The mail server is a central poin...

Lotus Notes HTML Speed Reader URL buffer overflow

Added: 02/17/2006 CVE: CVE-2005-2618 BID: 16576 OSVDB: 23068 Background Lotus Notes is the client for Lotus Domino servers. Problem A buffer overflow in the HTML Speed Reader component of the Lotus Notes e-mail client allows command execution by a specially crafted e-mail message containing a lon...

Lotus Notes HTML Speed Reader URL buffer overflow

Added: 02/17/2006 CVE: CVE-2005-2618 BID: 16576 OSVDB: 23068 Background Lotus Notes is the client for Lotus Domino servers. Problem A buffer overflow in the HTML Speed Reader component of the Lotus Notes e-mail client allows command execution by a specially crafted e-mail message containing a lon...

thebatSpoof.txt

Title: The Bat! 2.x message headers spoofing Author: 3APA3A Homepage: http://www.security.nnov.ru/ Advisory URL: http://www.security.nnov.ru/advisories/thebatspoof.asp Vendor: RitLabs Vendor's page http://thebat.net/ Application: The Bat 2.x 2.12.04 tested Not vulnerable: The Bat! 3.5 Remote: Yes...

Fedora Core 4 : mozilla-1.7.12-1.5.2 (2006-075)

Mozilla is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor. Igor Bukanov discovered a bug in the way Mozilla's JavaScript interpreter dereferences objects. If a user visits a malicious web page, Mozilla could crash or execute arbitrary code as the...

mozilla security update

CentOS Errata and Security Advisory CESA-2006:0199-01 Merged security bulletin from advisories: https://lists.centos.org/pipermail/centos-announce/2006-February/074784.html Affected packages: mozilla mozilla-chat mozilla-devel mozilla-dom-inspector mozilla-js-debugger mozilla-mail mozilla-nspr...

GNOME Evolution 2.2.32.3.x - Inline XML File Attachment Buffer Overflow

GNOME Evolution 2.2.32.3.x - Inline XML File Attachment Buffer Overflow source: https://www.securityfocus.com/bid/16408/info GNOME Evolution email client is prone to a denial-of-service vulnerability when processing messages containing inline XML file attachments with excessively long strings. pe...

Mozilla Thunderbird < 1.5 Attachment Extension Spoofing

The remote host is using Mozilla Thunderbird, an email client. The remote version of this software does not display attachments correctly in emails. Using an overly-long filename and specially crafted Content-Type headers, an attacker may be able to leverage this issue to spoof the file extension...

Ubuntu 4.10 / 5.04 : tiff vulnerability (USN-156-1)

Wouter Hanegraaff discovered that the TIFF library did not sufficiently validate the 'YCbCr subsampling' value in TIFF image headers. Decoding a malicious image with a zero value resulted in an arithmetic exception, which caused the program that uses the TIFF library to crash. This leads to a...

Microsoft Outlook Email Client Detection

Binary data 3366.prm...

MS06-003: Vulnerability in TNEF Decoding in Microsoft Outlook and Microsoft Exchange Could Allow Remote Code Execution (902412)

The remote host is running a version of Outlook or Exchange containing a bug in the Transport Neutral Encapsulation Format TNEF MIME attachment handling routine that could allow an attacker execute arbitrary code on the remote host by sending a specially crafted email. C Tenable Network Security,...

Pegasus Email Client < 4.31 Multiple Remote Overflows

Binary data 3332.prm...

DSA-906-1 sylpheed - several

Bulletin has no description...

RHEL 2.1 / 3 / 4 : mozilla (RHSA-2005:769)

An updated mozilla package that fixes a security bug is now available. This update has been rated as having critical security impact by the Red Hat Security Response Team. Mozilla is an open source Web browser, advanced email and newsgroup client, IRC chat client, and HTML editor. A bug was found...