6 matches found
EUVD-2020-16782
Malware in sbrugna...
CVE-2024-45438
TitanHQ SpamTitan Email Security Gateway contains a vulnerability in the quarantine.php interface that allows unauthenticated users to trigger account-level actions by crafting a GET request. If the email parameter uses a non-existent address, the system may create a user record and attach quaran...
SpamTitan Unauthenticated RCE
TitanHQ SpamTitan Gateway is an anti-spam appliance that protects against unwanted emails and malwares. This module exploits an improper input sanitization in versions 7.01, 7.02, 7.03 and 7.07 to inject command directives into the SNMP configuration file and get remote code execution as root. No...
CVE-2020-24046
The CVE-2020-24046 entry concerns TitanHQ SpamTitan Gateway 7.07. A sandbox escape allows an authenticated attacker to escalate to root by abusing the web interface Backup/Import Backup to modify /var/tmp/admin.passwd and then rewrite the admin userβs GUID to 0 and switch the restricted shell fro...
CVE-2020-24045
A sandbox escape issue was discovered in TitanHQ SpamTitan Gateway 7.07. It limits the admin user to a restricted shell, allowing execution of a small number of tools of the operating system. The restricted shell can be bypassed by presenting a fake vmware-tools ISO image to the guest virtual...
CVE-2020-24045
CVE-2020-24045 affects TitanHQ SpamTitan Gateway 7.07. The vulnerability arises from a sandbox escape in the restricted admin shell: when a fake VMware Tools ISO image is mounted in the guest VM, and the hidden VMware Tools install path vmware-freebsd-tools/vmware-tools-distrib/vmware-install.pl ...