Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

NVD
NVDadded 2016/09/14 10:59 a.m.16 views

CVE-2016-3366

Microsoft Outlook 2007 SP3, Outlook 2010 SP2, Outlook 2013 SP1, Outlook 2013 RT SP1, Outlook 2016, and Outlook 2016 for Mac do not properly implement RFC 2046, which allows remote attackers to bypass virus or spam detection via crafted MIME data in an e-mail attachment, aka "Microsoft Office...

6.5CVSS6.4AI score0.10418EPSS
Exploits0References3
CVE
CVEadded 2016/09/14 10:0 a.m.76 views

CVE-2016-3366

The CVE-2016-3366 issue is a spoofing vulnerability in Microsoft Outlook where MIME attachments are not correctly terminated per RFC 2046, allowing crafted attachments to bypass antivirus/antispam scans. Affected products include Outlook 2007 SP3, 2010 SP2, 2013 SP1 (and RT1), 2016, and Outlook 2...

6.5CVSS6.6AI score0.10418EPSS
Exploits0References3Affected Software1
securityvulns
securityvulnsadded 2006/08/11 12:0 a.m.49 views

Sending multipart/form-data requests from Flash (with arbitrary headers)

Hello lists, In my original "Forging HTTP request headers with Flash" paper http://www.securityfocus.com/archive/1/441014, I mentioned forcing multipart/form-data input format to ensure that Flash's LoadVars isn't used to forge the request. However, there's a work-around for the attacker - using...

7.2AI score
Exploits0
Rows per page
Query Builder