136 matches found
CVE-2019-15846
creationtimestamp| type| source ---|---|--- 2019-09-05 10:54:15+00:00| seen| https://t.me/winitproru/143 2019-09-06 11:04:18+00:00| published-proof-of-concept| https://t.me/techb0ltGenona/942 2019-09-06 11:09:16+00:00| published-proof-of-concept| https://t.me/techb0ltGenona/943 2019-09-06...
CVE-2019-10735
In Claws Mail 3.14.1, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted parts can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the...
Apple macOS Mojave Mail UI Spoofing Vulnerability
Apple macOS Mojave is a specialized operating system developed by Apple Inc. for Mac computers.The App Store is a platform for online distribution of applications.Mail is an email component of the... A security vulnerability exists in the Mail component of Apple macOS Mojave version 10.14. The...
Apache Pony Mail Information Disclosure Vulnerability
Apache Pony Mail is a plug-in with mail archiving, viewing and interaction capabilities from the Apache USA Software Foundation. A security vulnerability exists in the statistics generator in Apache Pony Mail versions 0.7 through 0.9, which stems from the statistics generator returning timestamp...
GHSA-JV74-F9PJ-XP3F Apache Camel's Mail is vulnerable to path traversal
Apache Camel's Mail 2.20.0 through 2.20.3, 2.21.0 through 2.21.1 and 2.22.0 is vulnerable to path traversal...
Microsoft Windows Mail Client Information Disclosure Vulnerability
Microsoft Mail, Calendar, and People are all products of Microsoft Corporation.Microsoft Mail is an e-mail application.Calendar is a calendar application.People is a contact information management application.Windows Mail Windows Mail is an e-mail client. An information disclosure vulnerability...
Apple iOS and macOS High Sierra Mail Information Disclosure Vulnerability
Apple iOS and macOS High Sierra are products of Apple Inc. Apple iOS is an operating system for mobile devices; macOS High Sierra is a specialized operating system for Mac computers. mail is one of the email components. A security vulnerability exists in the Mail component of Apple iOS before 11....
Apple macOS High Sierra Mail Man-in-the-Middle Attack Vulnerability
Apple macOS High Sierra is a specialized operating system developed by Apple Inc. for Mac computers.Mail is one of the email components. A security vulnerability exists in the handling of S/MIME HTML email messages in the Mail component in Apple macOS High Sierra versions prior to 10.13.4. An...
UBUNTU-CVE-2018-6789
An issue was discovered in the base64d function in the SMTP listener in Exim before 4.90.1. By sending a handcrafted message, a buffer overflow may happen. This can be used to execute code remotely...
Apple macOS High Sierra Mail Information Disclosure Vulnerability
Apple macOS High Sierra is a specialized operating system developed by Apple for Mac computers.Mail component is one of the email components. A security vulnerability exists in the Mail component of Apple macOS High Sierra versions prior to 10.13, which stems from the program failing to disable t...
Pegasus Mail Security Bypass Vulnerability
Pegasus Mail a.k.a. Pmail is an e-mail client available for the Microsoft Windows operating system. A security vulnerability exists in the winpm-32.exe file in Pegasus Mail version 4.72 build 572. An attacker can exploit this vulnerability to execute code with the help of a specially crafted...
CVE-2017-2095
Cybozu Garoon 3.0.0 to 4.2.3 allows remote authenticated attackers to bypass access restriction in the mail function leading to an alteration of the order of mail folders via unspecified vectors...
The vulnerability of the iOS operating system, which allows a perpetrator to compromise the integrity of protected information
The vulnerability of the Mail component in the iOS operating system is related to the lack of a user alert regarding the revocation of the S/MIME email signature certificate. Exploiting this vulnerability allows a malicious actor to compromise the integrity of the protected information...
Google Android AOSP Mail Information Disclosure Vulnerability (CNVD-2017-01556)
Android is a Linux-based open source operating system jointly developed by Google and the Open Handheld Alliance OHA. An information disclosure vulnerability exists in Google Android AOSP Mail. Attackers use this vulnerability to obtain sensitive information and launch further attacks...
SUPEE-9652 - Remote Code Execution using mail vulnerability
More info at https://magento.com/security/patches/supee-9652...
SUPEE-9652 - Remote Code Execution using mail vulnerability
More info at https://magento.com/security/patches/supee-9652...
WordPress Security Bypass Vulnerability (CNVD-2017-00614)
WordPress is a blogging platform developed using the PHP language by the WordPress Software Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A security vulnerability exists in the wp-mail.php file in WordPress versions prior to 4.7.1. A remote attack...
Roundcube 1.2.2 - Remote Code Execution
Roundcube 1.2.2: Command Execution via Email ============================================ You can find the online version of the advisory here: https://blog.ripstech.com/2016/roundcube-command-execution-via-email/ Found by Robin Peraglie with RIPS Introduction ------------ Roundcube is a widely...
Android OSP Mail Arbitrary Attachment Read Vulnerability
Android is an open source operating system based on Linux. A security vulnerability in the email/provider/AttachmentProvider.java file in Android's AOSP Mail allows remote attackers to exploit the vulnerability to build malicious apps that can read the contents of attachments...
CVE-2016-4747
Mail in Apple iOS before 10 mishandles certificates, which makes it easier for man-in-the-middle attackers to discover mail credentials via unspecified vectors...