Lucene search
K

12 matches found

0day.today
0day.today
added 2017/11/28 12:0 a.m.33 views

Android Gmail < 7.11.5.176568039 - Directory Traversal in Attachment Download Exploit

There is a directory traversal issue in attachment downloads in Gmail. For non-gmail accounts, there is no path sanitization on the attachment filename in the email, so when attachments are downloaded, a file with any name and any contents can be written to anywhere on the filesystem that the Gma...

6.9AI score
Exploits0
Prion
Prion
added 2016/12/15 6:59 a.m.20 views

Design/Logic Flaw

An issue was discovered in Open-Xchange Guard before 2.2.0-rev8. The "getprivkeybyid" API call is used to download a PGP Private Key for a specific user after providing authentication credentials. Clients provide the "id" and "cid" parameter to specify the current user by its user- and context-ID...

4CVSS7.2AI score0.02211EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2016/12/15 6:31 a.m.28 views

CVE-2015-8542

An issue was discovered in Open-Xchange Guard before 2.2.0-rev8. The "getprivkeybyid" API call is used to download a PGP Private Key for a specific user after providing authentication credentials. Clients provide the "id" and "cid" parameter to specify the current user by its user- and context-ID...

8.8AI score0.02211EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2015/04/28 12:0 a.m.9 views

The vulnerability of the Red Hat Linux operating system allows a remote attacker to compromise the confidentiality, integrity, and accessibility of protected information.

The vulnerability of the slrn-0.9.6.4 package of the Red Hat Linux operating system can lead to violations of confidentiality, integrity, and accessibility of protected information. Exploitation of this vulnerability can be carried out remotely...

7.5CVSS5.4AI score0.02695EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2014/12/01 12:0 a.m.31 views

Debian DSA-3083-1 : mutt - security update

A flaw was discovered in mutt, a text-based mailreader. A specially crafted mail header could cause mutt to crash, leading to a denial of service condition. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from Debian...

5CVSS8AI score0.09694EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2012/09/06 12:0 a.m.18 views

Mandrake Linux Security Advisory : pine (MDKSA-2000:073-1)

By adding specific headers to messages, the pine mail reader could be made to exit with an error message when users attempted to manipulate mail folders containing those messages. Update : The previous announcement did not make mention of another vulnerability in pine 4.21 and previous in that it...

7.5CVSS5.8AI score0.11504EPSS
Exploits1References1
Mozilla
Mozilla
added 2008/09/25 12:0 a.m.28 views

Heap overflow when canceling newsgroup message — Mozilla

Georgi Guninski reported a buffer overflow in the handling of cancelled newsgroup messages. The error was caused by too small a heap buffer being allocated to store message header information. This buffer could be overrun by an attacker using a specially crafted message which could crash the mail...

10CVSS2.6AI score0.07351EPSS
Exploits1References2Affected Software2
OSV
OSV
added 2006/07/11 12:0 a.m.19 views

DSA-1108 mutt - buffer overflow

Bulletin has no description...

7.5CVSS6.3AI score0.05889EPSS
Exploits1
Gentoo Linux
Gentoo Linux
added 2006/04/28 12:0 a.m.47 views

Mozilla Suite: Multiple vulnerabilities

Background The Mozilla Suite is a popular all-in-one web browser that includes a mail and news reader. Description Several vulnerabilities were found in Mozilla Suite. Version 1.7.13 was released to fix them. Impact A remote attacker could craft malicious web pages or emails that would leverage...

10CVSS7.4AI score0.12589EPSS
Exploits5
OSV
OSV
added 2005/04/18 12:0 a.m.14 views

DSA-710-1 gtkhtml - null pointer dereference

Bulletin has no description...

5CVSS6.7AI score0.02526EPSS
Exploits0
RedHat Linux
RedHat Linux
added 2004/03/10 2:34 p.m.5 views

Important: Red Hat Security Advisory: : Updated gdk-pixbuf packages fix denial of service vulnerability

Updated gdk-pixbuf packages that fix a denial of service vulnerability that could affect applications such as Evolution are now available. The gdk-pixbuf package contains an image loading library used with the GNOME GUI desktop environment. In Red Hat Linux 9 this library is used by applications,...

5CVSS5.8AI score0.02072EPSS
Exploits0
OSV
OSV
added 2003/05/06 12:0 a.m.15 views

DSA-300 balsa - buffer overflow

Bulletin has no description...

7.5CVSS6.1AI score0.02543EPSS
Exploits0
Rows per page
Query Builder