50 matches found
SpamAssassin -- denial-of-service in tokenize_headers
According to the SpamAssassin 2.64 release announcement: Security fix prevents a denial of service attack open to certain malformed messages; this DoS affects all SpamAssassin 2.5x and 2.6x versions to date. The issue appears to be triggered by overly long message headers...
mhonarc crossite scripting
Crossite scripting on message headers...
DSA-199 mhonarc - cross site scripting
Bulletin has no description...
PHP fails to filter ASCII control characters from string arguments of mail() function
Overview PHP does not properly filter parameters to its mail function. Description PHP is a scripting language widely used in web application development. PHP includes a function called mail that takes message parameters such as recipient address and sends mail using sendmail. PHP does not filter...
Buffer overflow in Pegasus Mail
Buffer overflow on large message headers...
Pegasus Mail 4.0 1 - Message Header Buffer Overflow
source: https://www.securityfocus.com/bid/5302/info Pegasus Mail is an email client for Microsoft Windows and DOS based systems. A buffer overflow vulnerability has been reported in some versions of Pegasus Mail. Reportedly, Pegasus is vulnerable to a buffer overflow condition when processing som...
qpopper позволяет подменить заголовки сообщения
Неточность при разборе содержимого почтового ящика позволяет составить письмо, часть которого будет воспринято qpopper как отдельное письмо со своими заголовками...
CVE-1999-0037
Arbitrary command execution via metamail package using message headers, when user processes attacker's message using metamail...
CVE-1999-0037
CVE-1999-0037 describes an arbitrary command execution in the metamail package when a user processes an attacker’s message with malicious content in its headers. The vulnerability stems from how metamail handles message headers during processing, enabling an attacker to execute commands on the af...
CVE-1999-0037
Arbitrary command execution via metamail package using message headers, when user processes attacker's message using metamail...