Lucene search
K

10 matches found

RedHat Linux
RedHat Linux
added 2026/04/15 10:42 a.m.6 views

thunderbird: Out of bounds read in IMAP parsing

A flaw was found in Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were...

8.2CVSS7.2AI score0.0036EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2026/04/15 10:42 a.m.5 views

thunderbird: Out of bounds read in IMAP parsing

A flaw was found in Thunderbird. The Mozilla Foundation's Security Advisory describes the following issue: A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were...

8.2CVSS7.2AI score0.0036EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2026/04/02 12:0 a.m.4 views

SUSE SLED15: MozillaThunderbird / MozillaThunderbird-translations-common / etc (SUSE-SU-2026:1163-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2026:1163-1 advisory. Update to Mozilla Thunderbird 140.9 MFSA 2026-24, bsc1260083: - CVE-2026-3889: Spoofing issue in...

10CVSS6.5AI score0.01279EPSS
Exploits1References82
Cvelist
Cvelist
added 2026/03/24 8:27 p.m.23 views

CVE-2026-4371 Out of bounds read in IMAP parsing

A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were compromised, an attacker could cause the parser to malfunction, potentially crashing Thunderbird or leaking...

0.0036EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/03/24 8:27 p.m.6 views

CVE-2026-4371 Out of bounds read in IMAP parsing

A malicious mail server could send malformed strings with negative lengths, causing the parser to read memory outside the buffer. If a mail server or connection to a mail server were compromised, an attacker could cause the parser to malfunction, potentially crashing Thunderbird or leaking...

7.2AI score0.0036EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-0588

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.02122EPSS
Exploits0References3
OSV
OSV
added 2022/01/08 12:40 a.m.18 views

GHSA-FQGW-6QJ5-8HMP Infinite Loop in Apache James

In Apache James, while fuzzing with Jazzer the IMAP parsing stack, we discover that crafted APPEND and STATUS IMAP command could be used to trigger infinite loops resulting in expensive CPU computations and OutOfMemory exceptions. This can be used for a Denial Of Service attack. The IMAP user nee...

6.5CVSS6.3AI score0.02122EPSS
Exploits0References3
OSV
OSV
added 2022/01/04 9:15 a.m.19 views

CVE-2021-40111

In Apache James, while fuzzing with Jazzer the IMAP parsing stack, we discover that crafted APPEND and STATUS IMAP command could be used to trigger infinite loops resulting in expensive CPU computations and OutOfMemory exceptions. This can be used for a Denial Of Service attack. The IMAP user nee...

6.5CVSS6.6AI score
Exploits0References2
Prion
Prion
added 2022/01/04 9:15 a.m.18 views

Code injection

In Apache James, while fuzzing with Jazzer the IMAP parsing stack, we discover that crafted APPEND and STATUS IMAP command could be used to trigger infinite loops resulting in expensive CPU computations and OutOfMemory exceptions. This can be used for a Denial Of Service attack. The IMAP user nee...

4CVSS6.3AI score0.02122EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2009/09/24 12:0 a.m.29 views

SuSE9 Security Update : mutt (YOU Patch Number 11094)

Mutt has a buffer overflow in IMAP namespace parsing code which may open a possible remote vulnerability. CVE-2006-3242 %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The text description of this plugin is C Novell, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

7.5CVSS5.8AI score0.05889EPSS
Exploits1References2
Rows per page
Query Builder