12 matches found
EUVD-2005-4531
Malware in sbrugna...
PT-2023-8664 · Unknown · Mailsherlock
Name of the Vulnerable Software and Affected Versions: MailSherlock affected versions not specified Description: The issue is related to the lack of protection against SQL query structure exploitation in the email audit record platform. This can be exploited by a remote attacker to execute...
HGiga MailSherlock SQL Injection Vulnerability (CNVD-2021-25618)
Hgiga MailSherlock is a set of enterprise mail audit system from Henderson Hgiga, China. HGiga MailSherlock suffers from a SQL injection vulnerability, which stems from the lack of validation of externally entered SQL statements in database-based applications, and can be exploited by an attacker ...
Debian Security Advisory DSA 960-2 (libmail-audit-perl)
The remote host is missing an update to libmail-audit-perl announced via advisory DSA 960-2. This update only corrects the update for sarge, the version in woody is correct. Niko Tyni discovered that the Mail::Audit module, a Perl library for creating simple mail filters, logs to a temporary file...
Debian Security Advisory DSA 960-2 (libmail-audit-perl)
The remote host is missing an update to libmail-audit-perl announced via advisory DSA 960-2. This update only corrects the update for sarge, the version in woody is correct. Niko Tyni discovered that the Mail::Audit module, a Perl library for creating simple mail filters, logs to a temporary file...
[SECURITY] [DSA 960-3] New libmail-audit-perl packages fix insecure temporary file use
-------------------------------------------------------------------------- Debian Security Advisory DSA 960-3 [email protected] http://www.debian.org/security/ Martin Schulze March 20th, 2006 http://www.debian.org/security/faq -...
CVE-2005-4536
Mail::Audit module in libmail-audit-perl 2.1-5, when logging is enabled without a default log file specified, uses predictable log filenames, which allows local users to overwrite arbitrary files via a symlink attack on the PID-audit.log temporary file...
CVE-2005-4536
CVE-2005-4536 affects the Mail::Audit Perl module (libmail-audit-perl). The issue is that when logging is enabled, the module creates temporary files with predictable names, enabling a local attacker to overwrite files via a symlink attack on the [PID]-audit.log file. Debian advisories and OpenVA...
[SECURITY] [DSA 960-1] New libmail-audit-perl packages fix insecure temporary file use
-------------------------------------------------------------------------- Debian Security Advisory DSA 960-1 [email protected] http://www.debian.org/security/ Martin Schulze January 31st, 2006 http://www.debian.org/security/faq -...
perl Mail::Audit library symbolic links problem
Insecure creation of log file...
CVE-2005-4536
Mail::Audit module in libmail-audit-perl 2.1-5, when logging is enabled without a default log file specified, uses predictable log filenames, which allows local users to overwrite arbitrary files via a symlink attack on the PID-audit.log temporary file...
CVE-2005-4536
Mail::Audit module in libmail-audit-perl 2.1-5, when logging is enabled without a default log file specified, uses predictable log filenames, which allows local users to overwrite arbitrary files via a symlink attack on the PID-audit.log temporary file...