136 matches found
Inside Systems Mail 2.0 - error.php Cross-Site Scripting
Inside Systems Mail 2.0 - error.php Cross-Site Scripting source: https://www.securityfocus.com/bid/21424/info Inside Systems Mail is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to have...
Kmail 1.9.1 - IMG SRC Remote Denial of Service
Kmail 1.9.1 - IMG SRC Remote Denial of Service nnp at silenthack.co.uk http://silenthack.co.uk Kmail tag. HTML parsing must be enabled for this. This can be done by going to Settings - Configure Kmail -Security - and tick Prefer HTML to Plain Text. Copy the following into your local...
CVE-2006-4210
numail.inc.php in Andreas Kansok phPay 2.02 and 2.02.1, when registerglobals is enabled, allows remote attackers to use the server as an open mail relay via modified mailtext2, userrow5, numail1, and shopmail parameters. NOTE: some of these details are obtained from third party information...
v3chatIM.txt
V3 Chat Instant Messenger http://www.v3chat.com/ Affected files: /mail/index.php /mail/reply.php isonline.php online.php profile.php profileview.php search.php mycontacts.php expire.php Editing your profile: - input boxes ------------------------------------------ Mail Vulnerabilities: Full path...
CVE-2006-0884
The WYSIWYG rendering engine "rich mail" editor in Mozilla Thunderbird 1.0.7 and earlier allows user-assisted attackers to bypass javascript security settings and obtain sensitive information or cause a crash via an e-mail containing a javascript URI in the SRC attribute of an IFRAME tag, which i...
Mercury Mail Remote IMAP Stack Buffer Overflow (deprecated)
Binary data 2438.prm...
Mandrake Linux 8.2 - '/usr/mail' Local Overflow
!/usr/bin/perl Mandrake 8.2 /usr/mail local exploit Usage: perl d86mail.pl offset Then enter "." dot and press 'Enter' Example: satan@localhost my$ perl d86mail.pl eip: 0xbffffddd .enter Cc: too long to edit sh-2.05$ $shellcode = "\x31\xdb\x89\xd8\xb0\x17\xcd\x80"...
outblaze.txt
========================================== INetCop Security Advisory 2003-0x82-014.b ========================================== Title: ++Danger++ Outblaze Web based e-mail that is exposed in very dangerous state !!! 0x01. Description Hackermail.com Outblaze Web based e-mail is mail service that I...
CVE-2003-1080
Unknown vulnerability in mail for Solaris 2.6 through 9 allows local users to read the email of other users...
Pegasus Mail 4.0 1 - Message Header Buffer Overflow
Pegasus Mail 4.0 1 - Message Header Buffer Overflow source: https://www.securityfocus.com/bid/5302/info Pegasus Mail is an email client for Microsoft Windows and DOS based systems. A buffer overflow vulnerability has been reported in some versions of Pegasus Mail. Reportedly, Pegasus is vulnerabl...
Microsoft Outlook Express 5.5 - Denial of Service Device Denial of Service
Microsoft Outlook Express 5.5 - Denial of Service Device Denial of Service source: https://www.securityfocus.com/bid/4584/info A denial of service issue has been reported in Microsoft Outlook Express. Reportedly, Outlook Express does not adequately handle unusually crafted HTML mail messages...
CVE-2002-0041
CVE-2002-0041 affects SGI Mail for IRIX 6.5 through 6.5.15f (and possibly earlier) and is triggered when the -R option is used, allowing local and remote attackers to cause a core dump. The available sources identify the affected software as Mail for SGI IRIX and describe the vulnerability as a f...
Avirt Mail 4.0/4.2 - 'Mail From:' / 'Rcpt to:' Denial of Service
// source: https://www.securityfocus.com/bid/1825/info Due to insufficient bounds checking in the code that handles the fields 'MAIL FROM:' and 'RCPT TO:', it is possible to remotely crash Avirt Mail. Entering over 272 characters into the 'RCPT TO:' field will crash the application upon terminati...
David Harris Pegasus Mail 3.12 - File Forwarding
David Harris Pegasus Mail 3.12 - File Forwarding source: https://www.securityfocus.com/bid/1738/info It is possible for a malicious website operator to obtain copies of known files on a remote system if a website visitor is running Pegasus Mail client. If the following code were to be inserted in...
CVE-2000-0036
Outlook Express 5 for Macintosh downloads attachments to HTML mail without prompting the user, aka the "HTML Mail Attachment" vulnerability...
solaris_bof.txt
Subject: Solaris 2.7 /usr/bin/mail To: [email protected] Greetings, There is a possible buffer overflow vulnerability in Solaris 2.7's sgid mail /usr/bin/mail. The reason it's only a possibility and not a full blow exploit is that mail drops sgid privs before the overflow occurs. However ...