373 matches found
Astra Linux - уязвимость в libspf2
Exim libspf2 Integer Underflow Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Exim libspf2. Authentication is not required to exploit this vulnerability. The specific flaw exists within the parsing o...
CVE-2016-10793
cPanel before 59.9999.145 allows arbitrary code execution due to an incorrect ! in Mail::SPF scripts SEC-152...
EUVD-2019-11327
Malware in sbrugna...
EUVD-2006-4604
Malware in sbrugna...
EUVD-2016-1787
Malware in sbrugna...
EUVD-2015-4207
Malware in sbrugna...
EUVD-2023-46577
Malicious code in bioql PyPI...
EUVD-2024-48177
Malicious code in bioql PyPI...
Fake DocuSign email hides tricky phishing attempt
On my daily rounds, I encountered a phishing attempt that used a not completely unusual, yet clever delivery method. What began as a seemingly routine DocuSign notification turned into a multi-layered deception involving Webflow, a shady redirect, and a legitimate Google login page. Webflow is a...
TencentOS Server 4: libspf2 (TSSA-2025:0149)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0149 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
CVE-2024-7208
A vulnerability in multi-tenant hosting allows an authenticated sender to spoof the identity of a shared, hosted domain, thus bypass security measures provided by DMARC or SPF or DKIM policies...
CVE-2025-22996
A stored cross-site scripting XSS vulnerability in the spftablecontent component of Linksys E5600 Router Ver. 1.1.0.26 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the desc parameter...
OESA-2024-2586 libspf2 security update
libspf2 is an implementation of the SPF Sender Policy Framework specification as found at: http://www.ietf.org/internet-drafts/draft-mengwong-spf-00.txt SPF allows email systems to check SPF DNS records and make sure that an email is authorized by the administrator of the domain name that it is...
OESA-2024-2584 libspf2 security update
libspf2 is an implementation of the SPF Sender Policy Framework specification as found at: http://www.ietf.org/internet-drafts/draft-mengwong-spf-00.txt SPF allows email systems to check SPF DNS records and make sure that an email is authorized by the administrator of the domain name that it is...
ROS-20240911-05
A vulnerability in the libspf2 library of the Exim mail server is related to an integer overflow resulting from the of SPF macros. Exploitation of the vulnerability could allow an attacker acting remotely, execute arbitrary code...
PT-2024-41041 · Qtech · Qtech Gigabit Spf Wifi Gateway
Name of the Vulnerable Software and Affected Versions: Qtech Gigabit SPF WiFi Gateway affected versions not specified Description: The issue is related to inadequate access control in the Qtech Gigabit SPF WiFi Gateway's firmware, allowing a remote attacker to execute arbitrary commands on the...
CVE-2024-7209
A vulnerability exists in the use of shared SPF records in multi-tenant hosting providers, allowing attackers to use network authorization to be abused to spoof the email identify of the sender...
CVE-2024-7209 CVE-2024-7209
A vulnerability exists in the use of shared SPF records in multi-tenant hosting providers, allowing attackers to use network authorization to be abused to spoof the email identify of the sender...
CVE-2024-7209 CVE-2024-7209
A vulnerability exists in the use of shared SPF records in multi-tenant hosting providers, allowing attackers to use network authorization to be abused to spoof the email identify of the sender...
CVE-2024-7209
CVE-2024-7209 concerns a weakness in shared SPF records used by multi-tenant hosting providers, enabling attackers to spoof the sender identity via network-level access. The CVSS vector (Network, Low/Low privileges, No user interaction) indicates exploitable remotely if SPF trust is not enforced;...