Lucene search
K

50 matches found

FreeBSD
FreeBSD
added 2004/08/04 12:0 a.m.19 views

SpamAssassin -- denial-of-service in tokenize_headers

According to the SpamAssassin 2.64 release announcement: Security fix prevents a denial of service attack open to certain malformed messages; this DoS affects all SpamAssassin 2.5x and 2.6x versions to date. The issue appears to be triggered by overly long message headers...

5CVSS6.3AI score0.01943EPSS
Exploits0References2
securityvulns
securityvulns
added 2002/11/20 12:0 a.m.29 views

mhonarc crossite scripting

Crossite scripting on message headers...

1AI score
Exploits0References1Affected Software1
OSV
OSV
added 2002/11/19 12:0 a.m.13 views

DSA-199 mhonarc - cross site scripting

Bulletin has no description...

6.8CVSS6.2AI score0.04022EPSS
Exploits0
CERT
CERT
added 2002/09/16 12:0 a.m.12 views

PHP fails to filter ASCII control characters from string arguments of mail() function

Overview PHP does not properly filter parameters to its mail function. Description PHP is a scripting language widely used in web application development. PHP includes a function called mail that takes message parameters such as recipient address and sends mail using sendmail. PHP does not filter...

6.5AI score
Exploits0References2
securityvulns
securityvulns
added 2002/07/25 12:0 a.m.28 views

Buffer overflow in Pegasus Mail

Buffer overflow on large message headers...

4AI score
Exploits0References1Affected Software1
Exploit DB
Exploit DB
added 2002/07/24 12:0 a.m.33 views

Pegasus Mail 4.0 1 - Message Header Buffer Overflow

source: https://www.securityfocus.com/bid/5302/info Pegasus Mail is an email client for Microsoft Windows and DOS based systems. A buffer overflow vulnerability has been reported in some versions of Pegasus Mail. Reportedly, Pegasus is vulnerable to a buffer overflow condition when processing som...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2000/04/12 12:0 a.m.25 views

qpopper позволяет подменить заголовки сообщения

Неточность при разборе содержимого почтового ящика позволяет составить письмо, часть которого будет воспринято qpopper как отдельное письмо со своими заголовками...

0.4AI score
Exploits0References1Affected Software1
Cvelist
Cvelist
added 1999/09/29 4:0 a.m.24 views

CVE-1999-0037

Arbitrary command execution via metamail package using message headers, when user processes attacker's message using metamail...

6.9AI score0.03508EPSS
Exploits0References1
CVE
CVE
added 1999/09/29 4:0 a.m.63 views

CVE-1999-0037

CVE-1999-0037 describes an arbitrary command execution in the metamail package when a user processes an attacker’s message with malicious content in its headers. The vulnerability stems from how metamail handles message headers during processing, enabling an attacker to execute commands on the af...

7.5CVSS7.5AI score0.03508EPSS
Exploits0References1Affected Software2
NVD
NVD
added 1997/05/21 4:0 a.m.15 views

CVE-1999-0037

Arbitrary command execution via metamail package using message headers, when user processes attacker's message using metamail...

7.5CVSS0.03508EPSS
Exploits0References1
Rows per page
Query Builder