4 matches found
Debian DLA-1025-1 : bind9 security update
CVE-2017-3142 An attacker who is able to send and receive messages to an authoritative DNS server and who has knowledge of a valid TSIG key name may be able to circumvent TSIG authentication of AXFR requests via a carefully constructed request packet. A server that relies solely on TSIG keys for...
CVE-2017-3142
An attacker who is able to send and receive messages to an authoritative DNS server and who has knowledge of a valid TSIG key name may be able to circumvent TSIG authentication of AXFR requests via a carefully constructed request packet. A server that relies solely on TSIG keys for protection wit...
Design/Logic Flaw
The "Add Sender to Address Book" operation AddSenderToAddressBook.lss and NameHelper.lss in IBM Lotus Notes 6.0 and 6.5 before 20060331 do not properly store information in the Personal Address Book when multiple messages are checked and a message uses AltFrom, which might allow user-assisted...
CVE-2006-1948
The CVE-2006-1948 entry affects IBM Lotus Notes 6.0 and 6.5 before 20060331. The issue stems from AddSenderToAddressBook.lss and NameHelper.lss not storing information in the Personal Address Book when multiple messages are selected and a message uses AltFrom, enabling user-assisted remote attack...