15 matches found
Exploit for CRLF Injection in Useplunk Plunk
CVE-2026-34975 — CRLF Email Header Injection in Plunk via raw...
Moderate: Red Hat Security Advisory: python3.9 security update
An update for python3.9 is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available fo...
EUVD-2001-0803
Malware in sbrugna...
EUVD-2022-7002
Malicious code in bioql PyPI...
Medium: dovecot
Issue Overview: Dovecot reports: A DoS is possible with a large number of address headers or abnormally large email headers. CVE-2024-23185 Affected Packages: dovecot Note: This advisory is applicable to Amazon Linux 2 AL2 Core repository. Visit this FAQ section for the difference between AL2 Cor...
Medium: dovecot
Issue Overview: Dovecot reports: A DoS is possible with a large number of address headers or abnormally large email headers. CVE-2024-23184 Dovecot reports: A DoS is possible with a large number of address headers or abnormally large email headers. CVE-2024-23185 Affected Packages: dovecot Issue...
SUSE-SU-2024:3294-1 Security update for python3
This update for python3 fixes the following issues: - CVE-2024-6923: email header injection due to unquoted newlines. bsc1228780...
SUSE-SU-2015:0758-1 Security update for mutt
The mailreader mutt was updated to fix a security issue in displaying mail headers, where a crafted e-mail could cause a heap overflow, which in turn might be used by attackers to crash mutt or potentially even execute code. Security Issues references: CVE-2014-0467...
CVE-2002-1255
Microsoft Outlook 2002 allows remote attackers to cause a denial of service repeated failure via an email message with a certain invalid header field that is accessed using POP3, IMAP, or WebDAV, aka "E-mail Header Processing Flaw Could Cause Outlook 2002 to Fail."...
CVE-2004-0215
Microsoft Outlook Express 5.5 and 6 allows attackers to cause a denial of service application crash via a malformed e-mail header...
SqWebMail 4.0.4.20040524 - Email Header HTML Injection
SqWebMail 4.0.4.20040524 - Email Header HTML Injection source: https://www.securityfocus.com/bid/10588/info SqWebMail is reported to be prone to an email header HTML injection vulnerability. This issue presents itself due to a failure of the application to properly sanitize user-supplied email...
CVE-2004-0324
Confirm 0.62 and earlier could allow remote attackers to execute arbitrary code via an e-mail header that contains shell metacharacters such as ", , |, ;, or $...
CVE-2004-0324
Confirm 0.62 and earlier could allow remote attackers to execute arbitrary code via an e-mail header that contains shell metacharacters such as ", , |, ;, or $...
Remote pine Denial of Service
Security Advisory 23rd October 2002 Remote pine version 4.44 denial of service Name: Pine version 4.44 Arch: Redhat 7.2 i386 Severity: Medium Vendor URL: http://www.washington.edu/pine/ Author: Linus Sjberg [email protected] Vendor notified: 14:th October 2002 Vendor response: 14:th October 2002...
UoW Pine 4.0.4/4.10/4.21 - 'From:' Remote Buffer Overflow
// source: https://www.securityfocus.com/bid/1709/info A buffer overflow vulnerability exists in the popular mail client Pine 4.21 and possibly earlier versions, relating to the function which regularly checks for incoming email. In standard e-mail message headers is a field that holds the name a...