SUSE CVE-2026-31934

Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to before version 8.0.4, there is a quadratic complexity issue when searching for URLs in mime encoded messages over SMTP leading to a performance impact. This issue has been patched in version 8.0.4...

CVE-2026-31934 Suricata smtp/mine: quadratic complexity in extracting urls

Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to before version 8.0.4, there is a quadratic complexity issue when searching for URLs in mime encoded messages over SMTP leading to a performance impact. This issue has been patched in version 8.0.4...

CVE-2026-31934 Suricata smtp/mine: quadratic complexity in extracting urls

Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to before version 8.0.4, there is a quadratic complexity issue when searching for URLs in mime encoded messages over SMTP leading to a performance impact. This issue has been patched in version 8.0.4...

EUVD-2026-18243

Suricata is a network IDS, IPS and NSM engine. From version 8.0.0 to before version 8.0.4, there is a quadratic complexity issue when searching for URLs in mime encoded messages over SMTP leading to a performance impact. This issue has been patched in version 8.0.4...

EUVD-2002-2303

Malware in sbrugna...

EUVD-2001-1519

Malware in sbrugna...

EUVD-2021-16416

Malware in sbrugna...

CVE-2001-1542

NAI WebShield SMTP 4.5 and possibly 4.5 MR1a does not filter improperly MIME encoded email attachments, which could allow remote attackers to bypass filtering and possibly execute arbitrary code in email clients that process the invalid attachments...

[SECURITY] Fedora 40 Update: perl-Email-MIME-1.954-1.fc40

This is an extension of the Email::Simple module, to handle MIME encoded messages. It takes a message as a string, splits it up into its constituent parts, and allows you access to various parts of the message. Headers are decoded from MIME encoding...

SUSE CVE-2004-0152

Multiple stack-based buffer overflows in 1 the encodemime function, 2 the encodeuuencode function, 3 or the decodeuuencode function for emil 2.1.0 and earlier allow remote attackers to execute arbitrary code via e-mail messages containing attachments with filenames...

CVE-2021-29957

If a MIME encoded email contains an OpenPGP inline signed or encrypted message part, but also contains an additional unprotected part, Thunderbird did not indicate that only parts of the message are protected. This vulnerability affects Thunderbird 78.10.2...

Re: Multiple Vendor Unusual MIME Encoding Content Filter Bypass

On Thu, 7 Dec 2006 22:00:31 +0300 3APA3A [email protected] wrote: Dear Tomasz Kojm, TK That's extremely irresponsible to disclose bugs without giving the TK vendors any chance to fix them and prepare new software releases. This is a rare case I can not agree with such statement. Ability to...

Re[2]: Multiple Vendor Unusual MIME Encoding Content Filter Bypass

Dear Tomasz Kojm, TK That's extremely irresponsible to disclose bugs without giving the vendors TK any chance to fix them and prepare new software releases. This is a rare case I can not agree with such statement. Ability to bypass content filter is not a bug before this issues is used in-the-wil...

ruby -- cgi.rb library Denial of Service

Official ruby site reports: A vulnerability has been discovered in the CGI library cgi.rb that ships with Ruby which could be used by a malicious user to create a denial of service attack DoS. The problem is triggered by sending the library an HTTP request that uses multipart MIME encoding and as...

Eudora 6.2 attachment spoof

Eudora 6.2 ==6.2.0.14 for Windows was released on 8 Nov 04. The release notes http://www.eudora.com/download/eudora/windows/6.2/RelNotes.txt say: SECURITY -------- Fixed cases where attachments could be spoofed via base64 or quoted-printable encoded plain-text, inline MIME parts. Some cases remai...

CVE-2004-0051

Multiple content security gateway and antivirus products allow remote attackers to bypass content restrictions via MIME messages that use non-standard but frequently supported Content-Transfer-Encoding values such as 1 uuencode, 2 mac-binhex40, and 3 yenc, which may be interpreted differently by...

CVE-2004-0161

The CVE-2004-0161 issue affects multiple content security gateway and antivirus products. The vulnerability allows remote attackers to bypass content restrictions by sending MIME messages encoded with RFC2231, which can be interpreted differently by mail clients. The NVD entry shows a base CVSS v...

[Full-Disclosure] Corsaire Security Advisory - Multiple vendor MIME RFC2231 encoding issue

-- Corsaire Security Advisory -- Title: Multiple vendor MIME RFC2047 encoding issue Date: 04.08.03 Application: various Environment: various Author: Martin O'Neal [email protected] Audience: General distribution Reference: c030804-007 -- Scope -- The aim of this document is to clearly...

CVE-2003-0130

The handleimage function in mail-format.c for Ximian Evolution Mail User Agent 1.2.2 and earlier does not properly escape HTML characters, which allows remote attackers to inject arbitrary data and HTML via a MIME Content-ID header in a MIME-encoded image...