41 matches found
EUVD-2007-3494
Malware in sbrugna...
Linux Distros Unpatched Vulnerability : CVE-2021-20247
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A flaw was found in mbsync before v1.3.5 and v1.4.1. Validations of the mailbox names returned by IMAP LIST/LSUB do not occur allowing a malicious or compromise...
CVE-2021-37448
Cross Site Scripting XSS exists in NCH IVM Attendant v5.12 and earlier via the Mailbox name stored...
CVE-2010-2777
Stack-based buffer overflow in the IMAP server component in GroupWise Internet Agent GWIA in Novell GroupWise 7.x before 7.0 post-SP4 FTF and 8.x before 8.0 SP2 allows remote attackers to execute arbitrary code via a long mailbox name in a CREATE command...
SUSE CVE-2010-2777
Stack-based buffer overflow in the IMAP server component in GroupWise Internet Agent GWIA in Novell GroupWise 7.x before 7.0 post-SP4 FTF and 8.x before 8.0 SP2 allows remote attackers to execute arbitrary code via a long mailbox name in a CREATE command...
SUSE CVE-2005-2933
Buffer overflow in the mailvalidnetparsework function in mail.c for Washington's IMAP Server UW-IMAP before imap-2004g allows remote attackers to execute arbitrary code via a mailbox name containing a single double-quote " character without a closing quote, which causes bytes after the double-quo...
SUSE CVE-2007-2231
Directory traversal vulnerability in index/mbox/mbox-storage.c in Dovecot before 1.0.rc29, when using the zlib plugin, allows remote attackers to read arbitrary gzipped .gz mailboxes mbox files via a .. dot dot sequence in the mailbox name...
GLSA-202208-15 : isync: Multiple Vulnerabilities
The remote host is affected by the vulnerability described in GLSA-202208-15 isync: Multiple Vulnerabilities - A flaw was found in mbsync before v1.3.5 and v1.4.1. Validations of the mailbox names returned by IMAP LIST/LSUB do not occur allowing a malicious or compromised server to use specially...
NCH IVM Attendant Cross-Site Scripting Vulnerability
NCH IVM Attendant is an application of nch. A cross-site scripting vulnerability exists in NCH IVM Attendant, which stems from the product's Mailbox name failing to properly filter incoming data for special characters, and could be exploited by attackers to execute client-side code...
CVE-2021-37448
Cross Site Scripting XSS exists in NCH IVM Attendant v5.12 and earlier via the Mailbox name stored...
Cross site scripting
Cross Site Scripting XSS exists in NCH IVM Attendant v5.12 and earlier via the Mailbox name stored...
CVE-2021-37448
Cross Site Scripting XSS exists in NCH IVM Attendant v5.12 and earlier via the Mailbox name stored...
NCH IVM Attendant 跨站脚本漏洞
NCH IVM Attendant is an application of nch. A cross-site scripting vulnerability exists in NCH IVM Attendant, which stems from the product's Mailbox name failing to properly filter incoming data for special characters, and could be exploited by attackers to execute client-side code...
OPENSUSE-SU-2021:0516-1 Security update for isync
This update for isync fixes the following issues: - isync was updated to version 1.3.5 - CVE-2021-20247: reject funny mailbox names from IMAP LIST/LSUB boo1182488...
mutt: IMAP header caching path traversal vulnerability
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/util.c mishandles ".." directory traversal in a mailbox name...
Directory traversal
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/util.c mishandles ".." directory traversal in a mailbox name...
DEBIAN-CVE-2018-14355
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/util.c mishandles ".." directory traversal in a mailbox name...
CVE-2018-14355
An issue was discovered in Mutt before 1.10.1 and NeoMutt before 2018-07-16. imap/util.c mishandles ".." directory traversal in a mailbox name...
CVE-2017-1274
IBM Domino 8.5.3, and 9.0 is vulnerable to a stack based overflow in the IMAP service that could allow an authenticated attacker to execute arbitrary code by specifying a large mailbox name. IBM X-Force ID: 124749...
CVE-2017-1274
IBM Domino 8.5.3, and 9.0 is vulnerable to a stack based overflow in the IMAP service that could allow an authenticated attacker to execute arbitrary code by specifying a large mailbox name. IBM X-Force ID: 124749...