18 matches found
EUVD-1999-0831
Malware in sbrugna...
EUVD-2002-0415
Malware in sbrugna...
EUVD-2002-0414
Malware in sbrugna...
Endymion MailMan 3.0..x Remote Arbitrary Command Execution Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/2063/info A vulnerability exists in 3.x versions of Endymion MailMan Webmail prior to release 3.0.26. The widely-used Perl script provides a web-email interface. Affected versions make insecure use of the perl open...
Endymion MailMan Detection
Binary data 2742.prm...
CVE-2002-0418
Directory traversal vulnerability in the com.endymion.sake.servlet.mail.MailServlet servlet for Endymion SakeMail 1.0.36 and earlier allows remote attackers to read arbitrary files via a .. dot dot and a null character in the paramname parameter...
CVE-2002-0417
Directory traversal vulnerability in Endymion MailMan before 3.1 allows remote attackers to read arbitrary files via a .. dot dot and a null character in the ALTERNATETEMPLATES parameter for various mmstdo.cgi programs...
CVE-2002-0418
The CVE-2002-0418 issue affects Endymion SakeMail prior to 1.0.36, specifically the com.endymion.sake.servlet.mail.MailServlet. The vulnerability is a directory-traversal in the param_name parameter, triggered by a ". ." sequence and a null character, allowing remote attackers to read arbitrary f...
CVE-2002-0418
Directory traversal vulnerability in the com.endymion.sake.servlet.mail.MailServlet servlet for Endymion SakeMail 1.0.36 and earlier allows remote attackers to read arbitrary files via a .. dot dot and a null character in the paramname parameter...
CVE-2002-0417
Directory traversal vulnerability in Endymion MailMan before 3.1 allows remote attackers to read arbitrary files via a .. dot dot and a null character in the ALTERNATETEMPLATES parameter for various mmstdo.cgi programs...
CVE-2002-0417
Endymion MailMan
Endymion SakeMail and MailMan File Disclosure Vulnerability
Product: SakeMail - Webmailsystem http://www.endymion.com Problem Description: due to missing input-validation it is possible to read xml/other files with sakemails permissions read THIS javanullbyte.html for additional infos on nullbytes and java-classes! Example: a HTTP-request to:...
(SRADV00005) Remote command execution vulnerabilities in MailMan Webmail
================================================= Secure Reality Pty Ltd. Security Advisory 5 SRADV00005 http://www.securereality.com.au ================================================= Title Remote command execution vulnerabilities in MailMan Webmail Released 6/11/2000 Vulnerable All 3.x versio...
Endymion MailMan 3.0.x - Arbitrary Command Execution
source: https://www.securityfocus.com/bid/2063/info A vulnerability exists in 3.x versions of Endymion MailMan Webmail prior to release 3.0.26. The widely-used Perl script provides a web-email interface. Affected versions make insecure use of the perl open function. Attackers can control the way...
Endymion MailMan 3.0.x - Arbitrary Command Execution
Endymion MailMan 3.0.x - Arbitrary Command Execution source: https://www.securityfocus.com/bid/2063/info A vulnerability exists in 3.x versions of Endymion MailMan Webmail prior to release 3.0.26. The widely-used Perl script provides a web-email interface. Affected versions make insecure use of t...
CVE-1999-0850
The default permissions for Endymion MailMan allow local users to read email or modify files...
CVE-1999-0850
CVE-1999-0850 affects Endymion MailMan. The vulnerability arises from default permissions that let local users read email or modify files, implying local access and partial confidentiality/integrity impact. The provided documents do not specify a patch, workaround, affected versions, or exploit d...
CVE-1999-0850
The default permissions for Endymion MailMan allow local users to read email or modify files...