Lucene search
K

41 matches found

Tenable Nessus
Tenable Nessus
added 2018/11/23 12:0 a.m.15 views

FreeBSD : php-imap -- imap_open allows to run arbitrary shell commands via mailbox parameter (ec49f6b5-ee39-11e8-b2f4-74d435b63d51)

The PHP team reports : imapopen allows to run arbitrary shell commands via mailbox parameter. C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from the FreeBSD VuXML database : Copyright 2003-2019 Jacques Vidrine and contributors Redistributio...

5.7AI score
Exploits0References2
Amazon
Amazon
added 2013/12/17 12:0 a.m.79 views

Critical: php

Issue Overview: The asn1timetotimet function in ext/openssl/openssl.c in PHP before 5.3.28, 5.4.x before 5.4.23, and 5.5.x before 5.5.7 does not properly parse 1 notBefore and 2 notAfter timestamps in X.509 certificates, which allows remote attackers to execute arbitrary code or cause a denial of...

7.5CVSS8.2AI score0.35635EPSS
Exploits8
Tenable Nessus
Tenable Nessus
added 2013/07/12 12:0 a.m.60 views

Oracle Linux 5 : php (ELSA-2009-0338)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2009-0338 advisory. - ext/gd: fix overflow2 usage for CVE-2007-3996, CVE-2008-3658 Tenable has extracted the preceding description block directly from the Oracle Linux...

10CVSS7.4AI score0.08845EPSS
Exploits14References7
Tenable Nessus
Tenable Nessus
added 2011/01/13 12:0 a.m.31 views

FreeBSD : php-imap -- Denial of Service (1a0704e7-0edf-11e0-becc-0022156e8794)

The following DoS condition in IMAP extension was fixed in PHP 5.3.4 and PHP 5.2.15 : A remote user can send specially crafted IMAP user name or password data to trigger a double free memory error in 'ext/imap/phpimap.c' and cause the target service to crash. It may be possible to execute arbitra...

5CVSS7.5AI score0.06008EPSS
Exploits0References4
OSV
OSV
added 2010/12/07 10:0 p.m.2 views

UBUNTU-CVE-2010-4150

Double free vulnerability in the imapdoopen function in the IMAP extension ext/imap/phpimap.c in PHP 5.2 before 5.2.15 and 5.3 before 5.3.4 allows attackers to cause a denial of service memory corruption or possibly execute arbitrary code via unspecified vectors...

5CVSS7.1AI score0.06008EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2008/06/23 8:41 p.m.0 views

CVE-2008-2829

phpimap.c in PHP 5.2.5, 5.2.6, 4.x, and other versions, uses obsolete API calls that allow context-dependent attackers to cause a denial of service crash and possibly execute arbitrary code via a long IMAP request, which triggers an "rfc822.c legacy routine buffer overflow" error message, related...

5CVSS6.3AI score0.05265EPSS
Exploits1References31
Cent OS
Cent OS
added 2007/02/19 9:40 p.m.78 views

php security update

CentOS Errata and Security Advisory CESA-2007:0076 Updated PHP packages that fix several security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having important security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting...

10CVSS6.4AI score0.11752EPSS
Exploits2References9
Cent OS
Cent OS
added 2006/09/21 11:36 a.m.93 views

php security update

CentOS Errata and Security Advisory CESA-2006:0669 Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 3 and 4. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting...

9.3CVSS6.1AI score0.06357EPSS
Exploits3References9
Cent OS
Cent OS
added 2006/07/26 10:56 p.m.130 views

php security update

CentOS Errata and Security Advisory CESA-2006:0567-01 Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 2.1 This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting...

9.3CVSS7.3AI score0.06241EPSS
Exploits2References8
Cent OS
Cent OS
added 2006/05/24 1:13 a.m.97 views

php security update

CentOS Errata and Security Advisory CESA-2006:0501-02 Updated PHP packages that fix multiple security issues are now available for Red Hat Enterprise Linux 2.1. This update has been rated as having moderate security impact by the Red Hat Security Response Team. PHP is an HTML-embedded scripting...

7.5CVSS7.4AI score0.11904EPSS
Exploits6References8
Exploit DB
Exploit DB
added 2006/02/28 12:0 a.m.76 views

PHP 4.x/5.0/5.1 - 'mb_send_mail()' Restriction Bypass

source: https://www.securityfocus.com/bid/16878/info PHP is prone to multiple input-validation vulnerabilities that could allow 'safemode' and 'openbasedir' security settings to be bypassed. These issues reside in the 'mbsendmail' function, the 'mail' function, and various PHP IMAP functions...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2006/02/28 12:0 a.m.14 views

PHP 4.x5.05.1 - mb_send_mail() Restriction Bypass

PHP 4.x5.05.1 - mbsendmail Restriction Bypass source: https://www.securityfocus.com/bid/16878/info PHP is prone to multiple input-validation vulnerabilities that could allow 'safemode' and 'openbasedir' security settings to be bypassed. These issues reside in the 'mbsendmail' function, the 'mail'...

0.1AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2005/11/02 12:0 a.m.36 views

Mandrake Linux Security Advisory : php-imap (MDKSA-2005:194)

'infamous41md' discovered a buffer overflow in uw-imap, the University of Washington's IMAP Server that allows attackers to execute arbitrary code. php-imap is compiled against the static c-client libs from imap. These packages have been recompiled against the updated imap development packages...

7.5CVSS5.9AI score0.08464EPSS
Exploits0References1
securityvulns
securityvulns
added 2005/10/27 12:0 a.m.60 views

MDKSA-2005:194 - Updated php-imap packages fix buffer overflow vulnerabilities.

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Mandriva Linux Security Advisory MDKSA-2005:194 http://www.mandriva.com/security/ Package : php-imap Date : October 26, 2005 Affected: 10.1, 10.2, 2006.0, Corporate 2.1, Corporate 3.0 Problem Description: "infamous41md" discovered a buffer overflow in...

7.5CVSS1.2AI score0.08464EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2004/08/09 12:0 a.m.44 views

BasiliX Application Detection

The remote host is running BasiliX, a webmail application based on PHP and IMAP and powered by MySQL. %NASLMINLEVEL 70300 This script was written by George A. Theall, . See the Nessus Scripts License for details. Changes by Tenable: - Revised plugin title 12/28/10 include'deprecatednasllevel.inc'...

5.5AI score
Exploits0References1
NVD
NVD
added 2003/12/31 5:0 a.m.23 views

CVE-2003-1303

Buffer overflow in the imapfetchoverview function in the IMAP functionality phpimap.c in PHP before 4.3.3 allows remote attackers to cause a denial of service segmentation fault and possibly execute arbitrary code via a long e-mail address in a 1 To or 2 From header...

5CVSS8AI score0.11904EPSS
Exploits1References3
CVE
CVE
added 2002/03/15 5:0 a.m.53 views

CVE-2001-1154

CVE-2001-1154 affects Cyrus mail servers (versions 2.0.15, 2.0.16, and 1.6.24) running on BSDi 4.2 with IMAP enabled. The issue allows remote attackers to cause a denial-of-service condition (hang) by leveraging PHP IMAP clients. The available documents confirm the affected software stack and the...

5CVSS7.1AI score0.01614EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2002/03/15 5:0 a.m.19 views

CVE-2001-1154

Cyrus 2.0.15, 2.0.16, and 1.6.24 on BSDi 4.2, with IMAP enabled, allows remote attackers to cause a denial of service hang using PHP IMAP clients...

6.8AI score0.01614EPSS
Exploits0References3
securityvulns
securityvulns
added 2001/03/11 12:0 a.m.30 views

Дырка в PHP 4 imap module

Переполнение буфера при работе с внешними библиотеками...

0.6AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2001/03/11 12:0 a.m.50 views

[GSA2001-01] PHP IMAP overflow fix problems

geekgang Security Advisory gsa2001-01 www.geekgang.co.uk © Copyright 2001 geekgang ID: geekgang GSA2001-01 01 v1.0 Topic: PHP IMAP overflow fix problems Status: Released 5th March, 2001 Author: pre Abstract PHP 4.0.4 contains a fix for a buffer overflow in the imap module. Unfortunately this fix...

0.1AI score
Exploits0
Rows per page
Query Builder