13 matches found
Unspecified Vulnerability in Exim (CNVD-2022-56952)
Exim is an open source messaging agent MTA running on Unix systems that routes, forwards and delivers mail. A security vulnerability exists in Exim versions prior to 4.95, which stems from a heap-based buffer overflow in the alias list in hostnamelookup when senderhostname is set. No details of t...
SiPass Integrated Access Control Vulnerability
SiPass integrated is an access control system. With the SiPass integrated access control vulnerability, an affected application does not adequately restrict access to the internal message broker system. An attacker could exploit the vulnerability to subscribe to arbitrary message queues...
Eclipse Mosquitto License Issue Vulnerability
Eclipse Mosquitto is a set of open source messaging agent software from the Eclipse Foundation. eclipse Mosquitto has a security vulnerability that stems from the fact that in Eclipse mosquito versions 2.0 through 2.0.11, when using the dynamic security plugin, if a client is unsubscribed from a...
Exim Resource Management Error Vulnerability
Exim is an open source messaging agent MTA running on Unix systems that routes, forwards and delivers mail. Exim suffers from a Resource Management Error vulnerability that stems from improper resource management within the application. An attacker could exploit this vulnerability to cause a deni...
Exim Permission License and Access Control Issues Vulnerability
Exim is an open source messaging agent MTA running on Unix systems that routes, forwards and delivers mail. Exim suffers from a privilege-granting and access-control issue vulnerability that stems from the application not properly applying security restrictions to a fake offline directory. An...
Exim Security Feature Issue Vulnerability
Exim is an open source messaging agent MTA running on Unix systems that routes, forwards and delivers mail. Exim suffers from a security signature issue vulnerability that stems from the lack of a closed execution flag for privileged pipelines. No detailed vulnerability details are provided at th...
Exim Backlink Vulnerability
Exim is an open source messaging agent MTA running on Unix systems that routes, forwards and delivers mail. Exim suffers from a security vulnerability that exists as a result of the following issue with symbolic links in the Exim log directory. An attacker can exploit the vulnerability to overwri...
Command execution vulnerability in the messagingagent module of Xiaoxi MINI smart speaker
Xiao Ai MINI Smart Speaker is an AI-based speaker that can be connected to the Internet. A command execution vulnerability exists in the messagingagent module of the Xiao-ai MINI smart speaker, which can be exploited by an attacker to remotely execute arbitrary commands to the device from the...
BlackBerry Enterprise Server vulnerable to malicious image file
BlackBerry Enterprise Server vulnerable to malicious image file There are remotely and easily exploitable vulnerabilities in the BlackBerry Enterprise Server that could allow an attacker to gain access to the server by simply sending a malicious image file to a user's BlackBerry device. The...
Severe Remote Flaw Fixed in BlackBerry Enterprise Server
There are remotely and easily exploitable vulnerabilities in the BlackBerry Enterprise Server that could allow an attacker to gain access to the server by simply sending a malicious image file to a user’s BlackBerry device. The vulnerabilities are in several version of BES for Exchange, Lotus...
BlackBerry Enterprise Server PNG and TIFF Image Processing Vulnerabilities (KB27244)
The version of BlackBerry Enterprise Server on the remote host reportedly contains multiple remote code execution vulnerabilities in its image processing library : - An unspecified error within the BlackBerry MDS Connection Service when processing PNG and TIFF images on a web page being viewed on...
RIM Releases Security Advisory for BlackBerry Enterprise Server
RIM has released a security advisory to address a vulnerability in the BlackBerry MDS Connection Service and BlackBerry Messaging Agent for the BlackBerry Enterprise Server. The vulnerability may allow an attacker to execute arbitrary code or gain unauthorized access to the BlackBerry Enterprise...
Novell GroupWise Messenger Accept-Language Buffer Overflow Vulnerability
This vulnerability allows attackers to execute arbitrary code on vulnerable installations of the Novell GroupWise Messenger. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Novell Messaging Agent, a web server that listens by default on TCP port...