24 matches found
CVE-2020-35730
An XSS issue was discovered in Roundcube Webmail before 1.2.13, 1.3.x before 1.3.16, and 1.4.x before 1.4.10. The attacker can send a plain text e-mail message, with JavaScript in a link reference element that is mishandled by linkrefaddindex in rcubestringreplacer.php...
LibreOffice and Openoffice Remote Code Execution (CVE-2018-16858)
A remote code execution vulnerability has been reported in LibreOffice and Openoffice. The vulnerability is due to insufficient validation of a link reference in a DOT file when processing events in the application. Successful exploitation of this vulnerability could allow a remote attacker to...
md4c buffer overflow vulnerability (CNVD-2018-15761)
md4c is a C-based Markdown a markup language parser . A buffer overflow vulnerability exists in the 'mdislinkreferencedefinitionhelper' function in version 0.2.5 of md4c, which stems from the program failing to properly handle loop termination. An attacker could use this vulnerability to cause a...
PT-2000-1308 · Qualcomm · Eudora
Name of the Vulnerable Software and Affected Versions: Eudora versions 4.x Description: The issue allows remote attackers to bypass the user warning for executable attachments such as .exe, .com, and .bat by using a .lnk file that refers to the attachment. This is also known as "Stealth...