45 matches found
EUVD-2006-0898
Malware in sbrugna...
EUVD-2002-2321
Malware in sbrugna...
EUVD-2009-0519
Malware in sbrugna...
EUVD-2006-0899
Malware in sbrugna...
EUVD-2006-0895
Malware in sbrugna...
CVE-2002-2343
Cross-site scripting XSS vulnerability in NOCC 0.9 through 0.9.5 allows remote attackers to inject arbitrary web script or HTML via email messages...
Volunteering with Girls Who Code
Volunteering with Girls Who Code has been one of the most enriching and edifying experiences of my time here at Akamai. I was chosen to serve as a mentor to one of the high school students, gave the NOCC tour...
Akamai Welcomes Girls Who Code
Akamai employees in Cambridge have started to see some new faces around the office for the summer - 20+ high school juniors to be specific! For the fourth consecutive year, Akamai is partnering with Girls Who Code to host a seven-week long summer immersion program dedicated to closing the gender...
Girls Who Code Weeks 3 and 4: Robots, the Internet and College
The summer is flying by, and we have reached the mid-point of our Girls Who Code Summer Immersion program. Our students are smart, engaged, learning a ton, and seem to be having a lot of fun! Last week was about robotics. The girls wired and programmed Arduino robots to perform a variety of tasks...
NOCC 0.9.x Webmail Script Injection Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/4740/info NOCC is a web based email client implemented in PHP4. It includes support for POP3, SMTP and IMAP servers, MIME attachments and multiple languages. A script injection issue has been reported with the way emails...
NOCC 1.0 filter_prefs.php html_filter_select Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/16793/info NOCC Webmail is prone to multiple input-validation vulnerabilities. These issues are due to a failure in the application to properly sanitize user-supplied input. An attacker can exploit these issues to inject...
CVE-2009-0515
Directory traversal vulnerability in checklang.php in Yet Another NOCC YANOCC 0.1.0 and earlier allows remote attackers to include and execute arbitrary local files via a .. dot dot in the lang parameter...
CVE-2009-0515
CVE-2009-0515 affects Yet Another NOCC (YANOCC) 0.1.0 and earlier. The vulnerability is a directory traversal in check_lang.php allowing remote attackers to include and execute arbitrary local files through a .. in the lang parameter. Documents do not specify affected versions beyond 0.1.0, explo...
CVE-2002-2343
CVE-2002-2343 is an XSS vulnerability in NOCC 0.9–0.9.5 that allows remote attackers to inject arbitrary web script or HTML via email messages. Affected product versions: NOCC 0.9 through 0.9.5. The provided documents do not specify a remediation or patch version. If exploitation details are need...
CVE-2002-2343
Cross-site scripting XSS vulnerability in NOCC 0.9 through 0.9.5 allows remote attackers to inject arbitrary web script or HTML via email messages...
CVE-2006-0893
NOCC Webmail 1.0 allows remote attackers to obtain sensitive information via a direct request to 1 the profiles directory, which leaks e-mail addresses contained in filenames of profiles, and 2 the tmp directory, which lists names of uploaded attachments...
CVE-2006-0891
Multiple directory traversal vulnerabilities in NOCC Webmail 1.0 allow remote attackers to include arbitrary files via .. dot dot sequences and a trailing NULL %00 byte in 1 the SESSION'nocctheme' parameter in a html/footer.php; and 2 the lang and 3 theme parameters and the 4 Accept-Language HTTP...
CVE-2006-0894
Multiple cross-site scripting XSS vulnerabilities in NOCC Webmail 1.0 allow remote attackers to inject arbitrary web script or HTML via 1 the htmlerroroccurred parameter in error.php, 2 htmlfilterselect parameter in filterprefs.php, 3 htmlnomail parameter in nomail.php, the 4 pageline, 5 prev, an...
Information disclosure
NOCC Webmail 1.0 allows remote attackers to obtain sensitive information via a direct request to 1 the profiles directory, which leaks e-mail addresses contained in filenames of profiles, and 2 the tmp directory, which lists names of uploaded attachments...
CVE-2006-0892
NOCC Webmail 1.0 stores e-mail attachments in temporary files with predictable filenames, which makes it easier for remote attackers to execute arbitrary code by accessing the e-mail attachment via directory traversal vulnerabilities...