CVE-2025-47779 Using malformed From header can forge identity with ";" or NULL in name portion

Asterisk is an open-source private branch exchange PBX. Prior to versions 18.26.2, 20.14.1, 21.9.1, and 22.4.1 of Asterisk and versions 18.9-cert14 and 20.7-cert5 of certified-asterisk, SIP requests of the type MESSAGE RFC 3428 authentication do not get proper alignment. An authenticated attacker...

Hackers Using Fake Trump's Scandal Video to Spread QNode Malware

Cybesecurity researchers today revealed a new malspam campaign that distributes a remote access Trojan RAT by purporting to contain a sex scandal video of U.S. President Donald Trump. The emails, which carry with the subject line "GOOD LOAN OFFER!!," come attached with a Java archive JAR file...

Threat Outbreak Alert RuleID31458: Email Messages Distributing Malicious Software on November 27, 2017

Medium Alert ID: 56055 First Published: 2017 November 27 14:40 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID31458 may contain the following files: Name |...

Threat Outbreak Alert RuleID29439: Email Messages Distributing Malicious Software on June 8, 2017

Medium Alert ID: 54154 First Published: 2017 June 8 14:43 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID29439 may contain the following files: Name | Size...

MGASA-2016-0019 Updated ruby-mail packages fix security vulnerability

The Mail library does not impose a length limit on email addresses, so an attacker can send a long spam message via a recipient address unless there is a limit on the application's side. The attacker-injected message in the recipient address is processed by the server. This type of vulnerability...

Threat Outbreak Alert RuleID14164: Email Messages Distributing Malicious Software on March 23, 2015

Medium Alert ID: 37991 First Published: 2015 March 23 15:54 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID14164 may contain the following files: Name | Si...

Threat Outbreak Alert RuleID13809: Email Messages Distributing Malicious Software on March 4, 2015

Medium Alert ID: 37717 First Published: 2015 March 4 15:23 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages distributing malicious software. Email messages that are related to this threat RuleID13809 and RuleID13809KVR may contain the followin...

CVE-2012-6110

CVE-2012-6110 concerns bcron: in versions before 0.10, bcron’s bcron-exec does not close file descriptors associated with temporary files when running a cron job. The underlying cause is the open file descriptor handling, enabling local users to modify job files and send spam by accessing an open...

Threat Outbreak Alert: Fake Order Request Email Messages on February 26, 2014

Medium Alert ID: 33057 First Published: 2014 February 26 18:35 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain an order request notification for the recipient. The text in the email message attempts to convince the...

Threat Outbreak Alert: Fake Product Specification Attachment Email Messages on January 14, 2014

Medium Alert ID: 32437 First Published: 2014 January 15 14:09 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a product specification attachment for the recipient. The text in the email message attempts to convince the...

Threat Outbreak Alert: Fake Payroll Information Notification Email Messages on February 25, 2015

Medium Alert ID: 31208 First Published: 2013 October 10 19:18 GMT Last Updated: 2015 February 26 15:01 GMT Version: 11 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain payroll information for the recipient. The email message attempts to...

Threat Outbreak Alert: Fake UPS Parcel Notification Email Messages on August 13, 2013

Medium Alert ID: 30398 First Published: 2013 August 13 17:51 GMT Version: 1 Summary Cisco Security has detected significant activity related to spam email messages that claim to contain a UPS parcel notification for the recipient. The text in the email message attempts to convince the recipient t...

Joomla! Spam Mail Relay Vulnerability

Exploit for php platform in category web applications Exploit Title: Joomla! Spam Mail Relay Date: 11 Jan 2011 Author: Jeff Channell Software Link: http://www.joomla.org/ Versions: 1.5.22, 1.6.0 Joomla! 1.5.22 & 1.6.0 both allow spam email to be relayed to unsuspecting victims via the core...