39 matches found
EUVD-2014-2755
Malware in sbrugna...
EUVD-2008-2824
Malware in sbrugna...
EUVD-2006-5472
Malware in sbrugna...
EUVD-2007-3780
Malware in sbrugna...
CVE-2014-2727
The STARTTLS implementation in MailMarshal before 7.2 allows plaintext command injection...
Trustwave MailMarshal Operating System Command Injection Vulnerability
Trustwave MailMarshal is a suite of email security gateway products from Trustwave, Inc. An operating system command injection vulnerability exists in the STARTTLS implementation in Trustwave MailMarshal versions prior to 7.2. An attacker could exploit this vulnerability to execute arbitrary...
CVE-2014-2727
The STARTTLS implementation in MailMarshal before 7.2 allows plaintext command injection...
Command injection
The STARTTLS implementation in MailMarshal before 7.2 allows plaintext command injection...
CVE-2014-2727
The STARTTLS implementation in MailMarshal before 7.2 allows plaintext command injection...
CVE-2014-2727
The CVE-2014-2727 issue affects MailMarshal’s STARTTLS before version 7.2, enabling plaintext command injection via the STARTTLS implementation. Public sources identify this as a network‑vector vulnerability with high impact and a high score (NVD CVSS v2/v3). The root cause is the STARTTLS handli...
MailMarshal Spam Quarantine Management (SQM) Multiple Component XSS
The remote host is running MailMarshal SMTP, a mail server for Windows. The Spam Quarantine Management web component included with the version of MailMarshal SMTP installed on the remote host is affected by a persistent cross-site scripting vulnerability in its 'delegated spam management' feature...
CVE-2008-2831
Multiple cross-site scripting XSS vulnerabilities in the delegated spam management feature in the Spam Quarantine Management SQM component in MailMarshal SMTP 6.0.3.8 through 6.3.0.0 allow user-assisted remote authenticated users to inject arbitrary web script or HTML via 1 the list of blocked...
CVE-2008-2831
Multiple cross-site scripting XSS vulnerabilities in the delegated spam management feature in the Spam Quarantine Management SQM component in MailMarshal SMTP 6.0.3.8 through 6.3.0.0 allow user-assisted remote authenticated users to inject arbitrary web script or HTML via 1 the list of blocked...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the delegated spam management feature in the Spam Quarantine Management SQM component in MailMarshal SMTP 6.0.3.8 through 6.3.0.0 allow user-assisted remote authenticated users to inject arbitrary web script or HTML via 1 the list of blocked...
CVE-2008-2831
The CVE-2008-2831 issue affects MailMarshal SMTP’s Spam Quarantine Management (SQM) web component. In versions 6.0.3.8–6.3.0.0, two XSS vectors exist in the delegated spam management UI: via the list of blocked senders and via the list of safe senders. The vulnerability allows user‑assisted remot...
CVE-2008-2831
Multiple cross-site scripting XSS vulnerabilities in the delegated spam management feature in the Spam Quarantine Management SQM component in MailMarshal SMTP 6.0.3.8 through 6.3.0.0 allow user-assisted remote authenticated users to inject arbitrary web script or HTML via 1 the list of blocked...
MailMarshal < 6.4 Spam Quarantine Management XSS
Binary data 4697.prm...
MailMarshal tar Archive Traversal Arbitrary File Overwrite
The remote host is running MailMarshal, a mail server for Windows. According to the registry, the installation of MailMarshal on the remote Windows host fails to properly sanitize file names when unpacking tar files. A remote attacker may be able to leverage this issue to overwrite files and...
MailMarshal Tar文档解压远程目录遍历漏洞
BUGTRAQ ID: 25523 MailMarshal SMTP是适用于业务网络的邮件安全解决方案。 如果远程攻击者发送了文件名中包含有目录遍历序列标识符的tar文档的话,则MailMarshal SMTP在解压该文档时可能会向系统中的任意目录(如开始菜单)写入文件。 Marshal MailMarshal SMTP 6.x Marshal MailMarshal SMTP 5.5 Marshal MailMarshal SMTP 2006 Marshal MailMarshal for Exchange 5.x 目前厂商已经发布了升级补丁以修复这个安全问题,请到厂商的主页下载:...
Marshal MailMarshal TAR Unpacking Vulnerability
Marshal MailMarshal TAR Unpacking Vulnerability Overview -------- Vendor: Marshal www.marshal.com Product: MailMarshal = 6.2.1.3253 Vulnerability: Remote file overwrite, Remote execution Risk: HIGH Description ----------- During a security audit for a customer we have discovered a serios...