1916 matches found
Avirt Gateway Suite 3.3/3.3 a/3.5 - Directory Creation
source: https://www.securityfocus.com/bid/764/info The aVirt Mail Server has a weakness in the code that handles the RCPT TO command. By specifying a path in the command instead of an email recipient , an attacker could cause the mail server to create a directory in the server's local filesystem...
CVE-1999-0873
Buffer overflow in Skyfull mail server via MAIL FROM command...
Sky Communications Skyfull 1.1.4 Mail Server - MAIL FROM Buffer Overflow
Sky Communications Skyfull 1.1.4 Mail Server - MAIL FROM Buffer Overflow // source: https://www.securityfocus.com/bid/759/info The Skyfull mail server version 1.1.4 has an unchecked buffer into which the argument from the MAIL FROM command is placed. This buffer can be overwritten and arbitrary...
Sky Communications Skyfull 1.1.4 Mail Server - MAIL FROM Buffer Overflow
// source: https://www.securityfocus.com/bid/759/info The Skyfull mail server version 1.1.4 has an unchecked buffer into which the argument from the MAIL FROM command is placed. This buffer can be overwritten and arbitrary code can be executed...
CMail MAIL FROM Command Remote Overflow
The remote host appears to be running a vulnerable version of CMail. Issuing a long argument to the 'MAIL FROM' command can result in a buffer overflow. An attack would look something similar to : MAIL FROM: [email protected] Where AAA...AAA contains more than 8000 'A's. A remote attacker coul...
AppleShare IP Mail Server 5.0.3 - Buffer Overflow
AppleShare IP Mail Server 5.0.3 - Buffer Overflow source: https://www.securityfocus.com/bid/61/info There exists a buffer overflow in the Apple AppleShare IP Mail Server 5.0.3. If yu connect to the SMTP port and issue a HELO command with a large string 500 bytes or more for a hostname the server,...
AppleShare IP Mail Server 5.0.3 - Buffer Overflow
source: https://www.securityfocus.com/bid/61/info There exists a buffer overflow in the Apple AppleShare IP Mail Server 5.0.3. If yu connect to the SMTP port and issue a HELO command with a large string 500 bytes or more for a hostname the server, and possibly the whole machine, will crash. $...
CVE-1999-1236
Internet Anywhere Mail Server 2.3.1 stores passwords in plaintext in the msgboxes.dbf file, which could allow local users to gain privileges by extracting the passwords from msgboxes.dbf...
CVE-1999-1500
Internet Anywhere POP3 Mail Server 2.3.1 allows remote attackers to cause a denial of service crash via 1 LIST, 2 TOP, or 3 UIDL commands using letters as arguments...
CVE-2000-0016
Buffer overflow in Internet Anywhere POP3 Mail Server allows remote attackers to cause a denial of service or execute commands via a long username...
True North Software Internet Anywhere Mail Server 2.3.x - Mail Server Multiple Buffer Overflow
True North Software Internet Anywhere Mail Server 2.3.x - Mail Server Multiple Buffer Overflow // source: https://www.securityfocus.com/bid/730/info // // True North Software's Internet Anywhere Mail Server has various weaknesses that could allow an attacker to remotely crash the server running...
True North Software Internet Anywhere Mail Server 2.3.x - Mail Server Multiple Buffer Overflow
// source: https://www.securityfocus.com/bid/730/info // // True North Software's Internet Anywhere Mail Server has various weaknesses that could allow an attacker to remotely crash the server running this software.. The POP3 commands "list", "retr" .uidl" and "user" and the SMTP command "vrfy", ...
TFS SMTP 3.2 MAIL FROM overflow
The remote SMTP server may be affected by a buffer overflow triggered when it receives an overly long argument to the 'MAIL FROM' command. This vulnerability is reported to affect TenFour TFS SMTP and may allow an unauthenticated remote attacker to crash the service or even execute arbitrary code...
CVE-1999-1516
A buffer overflow in TenFour TFS Gateway SMTP mail server 3.2 allows an attacker to crash the mail server and possibly execute arbitrary code by offering more than 128 bytes in a MAIL FROM string...
Sendmail decode Alias Arbitrary File Overwrite
The remote SMTP server seems to pipe mail sent to the 'decode' alias to a program. There have been in the past a lot of security problems regarding this, as it would allow an attacker to overwrite arbitrary files on the remote server. We suggest you deactivate this alias. C Tenable Network...
Sendmail MAIL FROM Command Arbitrary Remote Command Execution
The remote SMTP server did not complain when issued the command : MAIL FROM: |testing This probably means that it is possible to send mail that will be bounced to a program, which is a serious threat, since this allows anyone to execute arbitrary commands on this host. This security hole might be...
ntmail3relay.txt
NTMail version 3 relay problem NTmail3 appears to have a small hole that allows anyone to use an NTmail3 server as a relay mail server. Basically here is how it works. NTmail3 is set to not allow relay either the TO or FROM address must be local JUCE a $500 antispamming add-on from the makers of...
qmail-DoS-anonymous.txt
Date: Tue, 5 Jan 1999 22:41:44 -0000 From: D. J. Bernstein To: [email protected] Subject: Re: Anonymous Qmail Denial of Service News flash: There are dozens of denial-of-service attacks on every MTA. Example: Any Internet user can create a continuing torrent of mail from random Internet...
aix.security.fixes.txt
Date: Thu, 6 May 1999 11:15:15 +0200 From: Ciaran Deignan To: [email protected] Subject: AIX Security Fixes Update The IBM mail server just distributed the following file. This information has been integrated into the bullcheck verification tool version 1.0.9904.1 available from...
SLMail HELO Command Remote Overflow
There might be a buffer overflow when this MTA is issued the 'HELO' command issued by a too long argument. This problem may allow an attacker to execute arbitrary code on this computer, subject to the privileges under which the service operates, or to deny service to legitimate users of the serve...