8 matches found
Debian DLA-2108-1 : clamav security update
It was found that ClamAV, an antivirus software, was susceptible to a denial of service attack by unauthenticated users via inefficient MIME parsing of especially crafted email files. For Debian 8 'Jessie', this problem has been fixed in version 0.101.5+dfsg-0+deb8u1. We recommend that you upgrad...
[SECURITY] [DLA 2108-1] clamav security update
Package : clamav Version : 0.101.5+dfsg-0+deb8u1 CVE ID : CVE-2019-15961 Debian Bug : 945265 It was found that ClamAV, an antivirus software, was susceptible to a denial of service attack by unauthenticated users via inefficient MIME parsing of especially crafted email files. For Debian 8 "Jessie...
Medium: clamav
Issue Overview: A vulnerability in the email parsing module Clam AntiVirus ClamAV Software versions 0.102.0, 0.101.4 and prior could allow an unauthenticated, remote attacker to cause a denial of service condition on an affected device. The vulnerability is due to inefficient MIME parsing routine...
SUSE SLED15 / SLES15 Security Update : clamav (SUSE-SU-2019:3176-1)
This update for clamav fixes the following issues : CVE-2019-15961: Fixed a denial of service which might occur when scanning a specially crafted email file as bsc1157763. Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory...
Huawei BestShare 5 Directory Traversal Vulnerability
The Huawei Enjoy 5 TIT-AL00 is a smartphone from the Chinese company Huawei. A directory traversal vulnerability exists in Huawei Enjoy 5 TIT-AL00C583B211 version. An attacker who induces a user to install a malicious mobile application and modifies a specific URI can obtain information about fil...
Threat Outbreak Alert: Malicious Personal Pictures Attachment Email Messages on August 22, 2013
Low Alert ID: 24023 First Published: 2011 August 29 15:30 GMT Last Updated: 2013 August 23 12:24 GMT Version: 107 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain personal pictures for the recipient. The text in the message body attempt...
Ubuntu 6.06 LTS / 6.10 / 7.04 / 7.10 : dovecot vulnerabilities (USN-593-1)
It was discovered that the default configuration of dovecot could allow access to any email files with group 'mail' without verifying that a user had valid rights. An attacker able to create symlinks in their mail directory could exploit this to read or delete another user's email. CVE-2008-1199 ...
USN-593-1: Dovecot vulnerabilities
It was discovered that the default configuration of dovecot could allow access to any email files with group "mail" without verifying that a user had valid rights. An attacker able to create symlinks in their mail directory could exploit this to read or delete another user's email. CVE-2008-1199 ...