170 matches found
Exim 4 (Debian 8 / Ubuntu 16.04) - Spool Privilege Escalation
Exploit for linux platform in category local exploits / -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Hello List, This is just a minor issue in Exim, no replies so far, so publication should be OK. Introduction: ============ Exim4 in some variants is started as root but switches to uid/gid...
FTGate 7 - CSRF Vulnerabilities
Exploit for php platform in category web applications Vendor: ================================ www.ftgate.com www.ftgate.com/ftgate-update-7-0-300 Product: ================================ FTGate v7 Vulnerability Type: ================================= Cross site request forgery CSRF CVE Referenc...
[SECURITY] Fedora 19 Update: libetpan-1.6-1.fc19
The purpose of this mail library is to provide a portable, efficient middle -ware for different kinds of mail access. When using the drivers interface, the interface is the same for all kinds of mail access, remote and local mailbo xes...
[SECURITY] Fedora 20 Update: libetpan-1.6-1.fc20
The purpose of this mail library is to provide a portable, efficient middle -ware for different kinds of mail access. When using the drivers interface, the interface is the same for all kinds of mail access, remote and local mailbo xes...
calacode @mail webmail system 3.52 - Multiple Vulnerabilities
No description provided by source. source: http://www.securityfocus.com/bid/9180/info It has been reported that @mail Webmail System may be prone to multiple vulnerabilities that include directory traversal, SQL injection, session hijacking, and cross-site scripting. These issues may allow an...
Fedora Update for isync FEDORA-2013-2758
Check for the Version of isync OpenVAS Vulnerability Test Fedora Update for isync FEDORA-2013-2758 Authors: System Generated Check Copyright: Copyright c 2013 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the terms ...
Ubuntu 10.04 LTS / 10.10 / 11.04 : dovecot vulnerability (USN-1143-1)
It was discovered that the message header parser in Dovecot did not properly handle '\0' characters in header names. This could allow a remote attacker to cause a denial of service through a crafted email message by crashing the Dovecot daemon or corrupting mailboxes. Note that Tenable Network...
USN-1143-1: Dovecot vulnerability
It was discovered that the message header parser in Dovecot did not properly handle '\0' characters in header names. This could allow a remote attacker to cause a denial of service through a crafted email message by crashing the Dovecot daemon or corrupting mailboxes...
Ubuntu Update for dovecot vulnerabilities USN-1059-1
Ubuntu Update for Linux kernel vulnerabilities USN-1059-1 OpenVAS Vulnerability Test $Id: gbubuntuUSN10591.nasl 7964 2017-12-01 07:32:11Z santu $ Ubuntu Update for dovecot vulnerabilities USN-1059-1 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH,...
Ubuntu 10.04 LTS / 10.10 : dovecot vulnerabilities (USN-1059-1)
It was discovered that the ACL plugin in Dovecot would incorrectly propagate ACLs to new mailboxes. A remote authenticated user could possibly read new mailboxes that were created with the wrong ACL. CVE-2010-3304 It was discovered that the ACL plugin in Dovecot would incorrectly merge ACLs in...
DEBIAN-CVE-2010-3304
The ACL plugin in Dovecot 1.2.x before 1.2.13 propagates INBOX ACLs to newly created mailboxes in certain configurations, which might allow remote attackers to read mailboxes that have unintended weak ACLs...
CVE-2010-1123
Chip Salzenberg Deliver does not properly associate a lockfile with the user who created the file, which allows local users to cause a denial of service blockage of incoming e-mail by creating lockfiles for arbitrary mailboxes...
Code injection
Chip Salzenberg Deliver does not properly associate a lockfile with the user who created the file, which allows local users to cause a denial of service blockage of incoming e-mail by creating lockfiles for arbitrary mailboxes...
CVE-2010-1123
CVE-2010-1123 affects the Chip Salzenberg Deliver utility. The issue is that Deliver does not properly associate a lockfile with the user who created it, which allows local users to cause a denial of service by creating lockfiles for arbitrary mailboxes. The provided documents describe the vulner...
SEC Consult SA-20100208-0 :: Backdoor and Vulnerabilities in Xerox WorkCentre Printers Web Interface
SEC Consult Security Advisory 20100208-0 ======================================================================= title: Backdoor and Vulnerabilities in Xerox WorkCentre Printers Web Interface products: Xerox WorkCentre 5665/5675/5687 vulnerable version: 21.120.39.000 and possibly others fixed...
Xerox WorkCentre 5665/5675/5687 Printers Web Interface Vulnerabilities
Exploit for unknown platform in category web applications ====================================================================== Xerox WorkCentre 5665/5675/5687 Printers Web Interface Vulnerabilities ======================================================================...
Xerox WorkCentre 5665/5675/5687 Backdoor
SEC Consult Security Advisory ======================================================================= title: Backdoor and Vulnerabilities in Xerox WorkCentre Printers Web Interface products: Xerox WorkCentre 5665/5675/5687 vulnerable version: 21.120.39.000 and possibly others fixed version:...
[SECURITY] Fedora 11 Update: maildrop-2.4.0-12.fc11
maildrop is the mail filter/mail delivery agent that's used by the Courier Mail Server. This is a standalone build of the maildrop mail filter that can be used with other mail servers. maildrop is a replacement for your local mail delivery agent. maildrop reads a mail message from standard input,...
CVE-2010-0548
Multiple unspecified vulnerabilities in the Network Controller and Web Server in Xerox WorkCentre 5632, 5638, 5645, 5655, 5665, 5675, and 5687 allow remote attackers to 1 access mailboxes via unknown vectors that bypass Scan to Mailbox authorization or 2 read device configuration information via...
CVE-2010-0548
Multiple unspecified vulnerabilities in the Network Controller and Web Server in Xerox WorkCentre 5632, 5638, 5645, 5655, 5665, 5675, and 5687 allow remote attackers to 1 access mailboxes via unknown vectors that bypass Scan to Mailbox authorization or 2 read device configuration information via...