Lucene search
K

925 matches found

FreeBSD
FreeBSD
added 2008/10/17 12:0 a.m.34 views

opera -- multiple vulnerabilities

Opera reports: Certain constructs are not escaped correctly by Opera's History Search results. These can be used to inject scripts into the page, which can then be used to look through the user's browsing history, including the contents of the pages they have visited. These may contain sensitive...

6.2AI score
Exploits0References3
xssed
xssed
added 2007/12/26 12:0 a.m.14 views

Unfixed XSS vulnerability at www.locasite.com.br

Security researcher mygotmanoel, has submitted on 26/12/2007 a cross-site-scripting XSS vulnerability affecting www.locasite.com.br, which at the time of submission ranked 99968 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 25/02/2008. It is...

6.6AI score
Exploits0References1
exploitpack
exploitpack
added 2007/07/26 12:0 a.m.11 views

IPSwitch IMail Server 2006 9.10 - Subscribe Remote Overflow

IPSwitch IMail Server 2006 9.10 - Subscribe Remote Overflow !/use/bin/perl Test on Imail 20069.10, imap4d32.exe6.8.8.1, windows 2003 Chinese SP1 Code by yunshu, our team: www.ph4nt0m.org Mail list: http://list.ph4nt0m.org F:\perl imailSUBSCRIBE.pl 192.168.1.2 testuser testpass OK IMAP4 Server IMa...

7.5AI score
Exploits0
Exploit DB
Exploit DB
added 2007/07/26 12:0 a.m.33 views

IPSwitch IMail Server 2006 9.10 - Subscribe Remote Overflow

!/use/bin/perl Test on Imail 20069.10, imap4d32.exe6.8.8.1, windows 2003 Chinese SP1 Code by yunshu, our team: www.ph4nt0m.org Mail list: http://list.ph4nt0m.org F:\perl imailSUBSCRIBE.pl 192.168.1.2 testuser testpass OK IMAP4 Server IMail 9.10 0 OK LOGIN completed FLAGS \Answered \Flagged \Delet...

7.4AI score
Exploits0
securityvulns
securityvulns
added 2007/07/25 12:0 a.m.32 views

IPSwitch IMAIL IMAP server buffer overflow

Buffer overflow in SEARCH and SUBSCRIBE commands and also during authentication procedure...

9CVSS2.9AI score0.24455EPSS
Exploits6References3Affected Software1
NVD
NVD
added 2007/07/21 12:30 a.m.17 views

CVE-2007-3927

Multiple buffer overflows in Ipswitch IMail Server 2006 before 2006.21 1 allow remote attackers to execute arbitrary code via unspecified vectors in Imailsec and 2 allow attackers to have an unknown impact via an unspecified vector related to "subscribe."...

10CVSS7.8AI score0.21893EPSS
Exploits4References9
Prion
Prion
added 2007/07/21 12:30 a.m.19 views

Buffer overflow

Multiple buffer overflows in Ipswitch IMail Server 2006 before 2006.21 1 allow remote attackers to execute arbitrary code via unspecified vectors in Imailsec and 2 allow attackers to have an unknown impact via an unspecified vector related to "subscribe."...

10CVSS8.2AI score0.21893EPSS
Exploits4References9Affected Software2
Cvelist
Cvelist
added 2007/07/21 12:0 a.m.34 views

CVE-2007-3927

Multiple buffer overflows in Ipswitch IMail Server 2006 before 2006.21 1 allow remote attackers to execute arbitrary code via unspecified vectors in Imailsec and 2 allow attackers to have an unknown impact via an unspecified vector related to "subscribe."...

7.8AI score0.21893EPSS
Exploits4References9
Saint
Saint
added 2007/03/27 12:0 a.m.21 views

MERCUR imapd SUBSCRIBE command buffer overflow

Added: 03/27/2007 CVE: CVE-2007-1579 BID: 23050 OSVDB: 33546 Background MERCUR Messaging Server is an e-mail server supporting the SMTP, POP3, and IMAP protocols for Windows platforms. Problem A buffer overflow vulnerability allows remote, authenticated attackers to execute arbitrary commands by...

10CVSS7.5AI score0.56209EPSS
Exploits5
Prion
Prion
added 2007/03/24 12:19 a.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in SubHub 2.3.0 allow remote attackers to inject arbitrary web script or HTML via 1 the searchtext parameter to a /search, or the 2 message parameter to b /calendar or c /subscribe...

4.3CVSS6AI score0.01028EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2007/03/24 12:0 a.m.23 views

CVE-2007-1646

Multiple cross-site scripting XSS vulnerabilities in SubHub 2.3.0 allow remote attackers to inject arbitrary web script or HTML via 1 the searchtext parameter to a /search, or the 2 message parameter to b /calendar or c /subscribe...

5.8AI score0.01028EPSS
Exploits0References3
securityvulns
securityvulns
added 2007/03/22 12:0 a.m.43 views

**SubHub v2.3.0**

SubHub v2.3.0 Site: http://www.subhub.com/ & others that use this software Type of Expliot: XSS Version : 2.3.0 Discover: T--T Bug in : /search?searchtext=insert xss here /calendar/?message=insert xss here /subscribe?message=insert xss here - - - - - - - - - - - - - - - - Exploit POC...

0.6AI score
Exploits0
securityvulns
securityvulns
added 2007/03/22 12:0 a.m.58 views

Atrium Mercur Mailserver IMAPD buffer overflow

Multiple buffer overflows in IMAP NTLM authentication implementation. Buffer overflow in SUBSCRIBE command...

10CVSS3.4AI score0.56209EPSS
Exploits10References1Affected Software1
seebug.org
seebug.org
added 2007/03/22 12:0 a.m.24 views

Atrium Mercur IMap Subscribe请求远程栈溢出漏洞

Mercur是Atrium Software推出的系列邮件服务器产品。 Mercur的NTLM认证机制实现上存在漏洞,远程攻击者可能利用此漏洞控制服务器或导致服务崩溃。 Mercur的IMAPD在实现NTLM的代码中盲目使用用户提供的长度数据作为memcpy调用的参数,远程攻击者可能利用此问题触发一个栈溢出,导致拒绝服务或执行任意指令。 Atrium Software Mercur v5.00.14 win32 目前厂商还没有提供补丁或者升级程序,我们建议使用此软件的用户随时关注厂商的主页以获取最新版本: http://www.atrium-software.com/...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2007/03/22 12:0 a.m.35 views

Mercur Messaging 2005 IMAP (SUBSCRIBE) Remote Exploit (win2k SP4)

No description provided by source. !/usr/bin/python Remote exploit for the stack overflow vulnerability in Mercur Messaging 2005 SP3 IMAP service. The exploit was tested on windows 2000 server SP4 in a Vmware environment. At the time of overflow EBX points to our shellcode. However this buffer in...

7.1AI score
Exploits0
Prion
Prion
added 2007/03/21 11:19 p.m.17 views

Stack overflow

Stack-based buffer overflow in Atrium MERCUR IMAPD allows remote attackers to have an unknown impact via a certain SUBSCRIBE command...

10CVSS7.6AI score0.56209EPSS
Exploits5References8Affected Software1
NVD
NVD
added 2007/03/21 11:19 p.m.23 views

CVE-2007-1579

Stack-based buffer overflow in Atrium MERCUR IMAPD allows remote attackers to have an unknown impact via a certain SUBSCRIBE command...

10CVSS7AI score0.56209EPSS
Exploits5References8
Cvelist
Cvelist
added 2007/03/21 11:0 p.m.22 views

CVE-2007-1579

Stack-based buffer overflow in Atrium MERCUR IMAPD allows remote attackers to have an unknown impact via a certain SUBSCRIBE command...

7AI score0.56209EPSS
Exploits5References8
CVE
CVE
added 2007/03/21 11:0 p.m.60 views

CVE-2007-1579

The CVE-2007-1579 issue affects Atrium MERCUR Messaging Server (MERCUR IMAPD) on Windows, where the IMAP SUBSCRIBE command processing has a stack-based buffer overflow in the IMAP service. The vulnerability allows remote attackers to trigger arbitrary actions via a crafted SUBSCRIBE request, with...

10CVSS6.9AI score0.56209EPSS
Exploits5References8Affected Software2
Exploit DB
Exploit DB
added 2007/03/21 12:0 a.m.39 views

Mercur Messaging 2005 (Windows 2000 SP4) - IMAP 'Subscribe' Remote Overflow

!/usr/bin/python Remote exploit for the stack overflow vulnerability in Mercur Messaging 2005 SP3 IMAP service. The exploit was tested on windows 2000 server SP4 in a Vmware environment. At the time of overflow EBX points to our shellcode. However this buffer into which EBX points will give a...

7AI score
Exploits0
Rows per page
Query Builder