13 matches found
SUSE CVE-2017-14482
GNU Emacs before 25.3 allows remote attackers to execute arbitrary code via email with crafted "Content-Type: text/enriched" data containing an x-display XML element that specifies execution of shell commands, related to an unsafe text/enriched extension in lisp/textmodes/enriched.el, and unsafe...
SUSE: Security Advisory (SUSE-SU-2017:2529-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE SLED12 / SLES12 Security Update : emacs (SUSE-SU-2017:2529-1)
This update for emacs fixes one issues. This security issue was fixed : - CVE-2017-14482: Remote code execution via mails with 'Content-Type: text/enriched' bsc1058425 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenabl...
SUSE SLES11 Security Update : emacs (SUSE-SU-2017:2532-1)
This update for emacs fixes one issues. This security issue was fixed : - CVE-2017-14482: Remote code execution via mails with 'Content-Type: text/enriched' bsc1058425 Note that Tenable Network Security has extracted the preceding description block directly from the SUSE security advisory. Tenabl...
openSUSE: Security Advisory for emacs (openSUSE-SU-2017:2535-1)
The remote host is missing an update for the Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
GNU Emacs Remote Code Execution Vulnerability
GNU Emacs is a Unix text editor written in C developed by the GNU Project, which supports syntax highlighting, multiple languages and feature extensions. A security vulnerability exists in versions of GNU Emacs prior to 25.3. The vulnerability can be exploited by a remote attacker to execute...
CVE-2017-14482
GNU Emacs before 25.3 allows remote attackers to execute arbitrary code via email with crafted "Content-Type: text/enriched" data containing an x-display XML element that specifies execution of shell commands, related to an unsafe text/enriched extension in lisp/textmodes/enriched.el, and unsafe...
CVE-2017-14482
GNU Emacs before 25.3 allows remote attackers to execute arbitrary code via email with crafted "Content-Type: text/enriched" data containing an x-display XML element that specifies execution of shell commands, related to an unsafe text/enriched extension in lisp/textmodes/enriched.el, and unsafe...
CVE-2017-14482
GNU Emacs before 25.3 allows remote attackers to execute arbitrary code via email with crafted "Content-Type: text/enriched" data containing an x-display XML element that specifies execution of shell commands, related to an unsafe text/enriched extension in lisp/textmodes/enriched.el, and unsafe...
UBUNTU-CVE-2017-14482
GNU Emacs before 25.3 allows remote attackers to execute arbitrary code via email with crafted "Content-Type: text/enriched" data containing an x-display XML element that specifies execution of shell commands, related to an unsafe text/enriched extension in lisp/textmodes/enriched.el, and unsafe...
Debian: Security Advisory (DSA-3970-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Debian: Security Advisory (DSA-700-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2008 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2005-0386
Cross-site scripting XSS vulnerability in network.cgi in mailreader before 2.3.29 earlier allows remote attackers to inject arbitrary web script or HTML via MIME text/enriched or text/richtext messages...