MailEnable IMAP Server multiple security vulnerabilities

Buffer overflow in EXAMINE, SELECT, DELETE commands...

CVE-2006-6290

Multiple stack-based buffer overflows in the IMAP module MEIMAPS.EXE in MailEnable Professional 1.6 through 1.82 and 2.0 through 2.33, and MailEnable Enterprise 1.1 through 1.30 and 2.0 through 2.33 allow remote authenticated users to cause a denial of service crash or possibly execute arbitrary...

Q-Shop v3.5(browse.asp) Remote SQL Injection Vulnerability

Vulnerability Report Title : Q-Shop v3.5browse.asp Remote SQL Injection Vulnerability Author : ajann Script Page : http://quadcomm.com Exploit; http://target/path/browse.asp?cat=42&ManuID=&OrderBy=SQL HERE Example:...

CVE-2006-4544

Multiple PHP remote file inclusion vulnerabilities in ExBB 1.9.1, when registerglobals is enabled, allow remote attackers to execute arbitrary PHP code via a URL in the exbbhomepath parameter in files in the modules directory including 1 birstday/birst.php 2 birstday/select.php, 3...

ATutor <= 1.5.3.1 (links) Remote Blind SQL Injection Exploit

Exploit for unknown platform in category web applications ============================================================ ATutor = 4.1 allowing SELECT subqueries for ORDER BY statements see http://dev.mysql.com/doc/refman/5.0/en/subqueries.html - with at least 2 links in atlinks table / if $argc5 ec...

WinGate IMAP Server Directory Traversal Vulnerabilities

The remote host appears to be running WinGate, a Windows application for managing and securing Internet access. The version of WinGate installed on the remote host fails to remove directory traversal sequences from the 'CREATE', 'SELECT', 'DELETE', 'RENAME', 'COPY', 'APPEND', and 'LIST' commands...

CVE-2006-3052

Cross-site scripting XSS vulnerability in Event Registration allows remote attackers to inject arbitrary web script or HTML via the 1 eventid parameter to view-event-details.php or 2 selectevents parameter to event-registration.php. NOTE: the provenance of this information is unknown; the details...

Directory traversal

Directory traversal vulnerability in the IMAP service in EServ/3 3.25 allows remote authenticated users to read other user's email messages, create/rename arbitrary directories on the system, and delete empty directories via directory traversal sequences in the 1 CREATE, 2 SELECT, 3 DELETE, 4...

Privilege escalation using addSelectionListener — Mozilla

Web content could access the nsISelectionPrivate interface of the Selection object and use it to add a SelectionListener. The listener would be called when the user did a "Find" on the page or a "select all", and as intended this shouldn't cause any problems. But as with escaping the PAC sandbox ...

CVE-2006-1705

Oracle Database 9.2.0.0 to 10.2.0.3 allows local users with "SELECT" privileges for a base table to insert, update, or delete data by creating a crafted view then performing the operations on that view...

CVE-2006-1705

Oracle Database 9.2.0.0 to 10.2.0.3 allows local users with "SELECT" privileges for a base table to insert, update, or delete data by creating a crafted view then performing the operations on that view...

Mercur MailServer 5.0 SP3 - &#039;IMAP&#039; Denial of Service

/ Exploit for : IMAP 5.0 SP3 DoS Exploit Advisory : http://secunia.com/advisories/19267/ Coder : Omnipresent Email : [email protected] Description : Tim Taylor has discovered a vulnerability in Mercur Messaging 2005, which can be exploited by malicious people and by malicious users to cause a...

PHPNukeEV77.txt

PHPNuke EV 7.7 'search' module 'query' variable SQL injection Vendor url: http://nukevolution.com/ exploit available:yes vendor notify:yes advisore:http://lostmon.blogspot.com/2006/01/ phpnuke-ev-77-search-module-query.html PHPNuke EV 7.7 have a flaw which can be exploited by malicious people to...

CVE-2005-3189

Directory traversal vulnerability in Qualcomm WorldMail IMAP Server allows remote attackers to read arbitrary email messages via ".." sequences in the SELECT command...

CVE-2005-3189

Directory traversal vulnerability in Qualcomm WorldMail IMAP Server allows remote attackers to read arbitrary email messages via ".." sequences in the SELECT command...

forumSQL.txt

Class: Input Validation Error CVE: CVE-MAP-NOMATCH Remote: Yes Discovered BY ABDUCTER & Expliot BY DEVIL-00 [email protected] OR [email protected] Vulnerable:powered by oaboard 1.0 ////////////////////////////////// info:- FOR INFORMATION VISIT http://oaboard.myserver.at/oaboard/forum.ph...

VERITAS-OSX.pl.txt

!/usr/bin/perl VERITAS-OSX.pl - VERITAS NetBackup Format Strings OSX/ppc Remote Exploit Original code by johnhatdigitalmunitiondotcom modified by KF to work on OSX / ppc bug found by kflistsatdigitalmunitiondotcom http://www.digitalmunition.com/ This exploit May NOT be posted to a public Archive...

CVE-2004-2513

Buffer overflow in the IMAP service of Mercury Pegasus Mail 4.01 allows remote attackers to execute arbitrary code via a long SELECT command...

Stoney FTPd - rxBot mods ftpd Denial of Service

Stoney FTPd - rxBot mods ftpd Denial of Service / untested /str0ke / / rx-dos.c by D-oNe There exists a buffer overflow in Stoneys FTPd that most rxBot mod's use. The problem lies in how the code parses the PORT command and gives an opportunity for a buffer overflow. Problem is that the ftpd also...

CVE-2005-2073

CVE-2005-2073 affects IBM DB2 versions 8.1.4–8.1.9 and 8.2.0–8.2.2. The description states an unknown vulnerability that allows local users with SELECT privileges to perform unauthorized activities and to insert, update, or delete table contents. The currently provided connected documents do not ...