EUVD-1999-1506

Malware in sbrugna...

EUVD-2018-13019

Malware in sbrugna...

CVE-2024-45746

An issue was discovered in Trusted Firmware-M through 2.1.0. User provided and controlled mailbox messages contain a pointer to a list of input arguments invec and output arguments outvec. These list pointers are never validated. Each argument list contains a buffer pointer and a buffer length...

CVE-2024-45746

An issue was discovered in Trusted Firmware-M through 2.1.0. User provided and controlled mailbox messages contain a pointer to a list of input arguments invec and output arguments outvec. These list pointers are never validated. Each argument list contains a buffer pointer and a buffer length...

MyBB 跨站脚本漏洞

MyBB MyBulletinBoard is a free and web-based forum software developed by MYBB team using PHP and MySQL. The software is easy to use, supports multiple languages, scalable and other features. A security vulnerability exists in MyBB versions prior to 1.8.34, which stems from a cross-site scripting...

CVE-2016-6253

mail.local in NetBSD versions 6.0 through 6.0.6, 6.1 through 6.1.5, and 7.0 allows local users to change ownership of or append data to arbitrary files on the target system via a symlink attack on the user mailbox...

Lower mistakes: the U.S. telecommunications Verizon（Verizon）APP vulnerability exists, can be read-vulnerability warning-the black bar safety net

! Verizon（Verizon is the largest US telecommunications companies. Recently, security researchers at Verizon（Verizon its FiOS mobile APP on found a high-risk vulnerability that can allow an attacker access to millions of Verizon user's email account. Vulnerability details FiOS mobile APP on this...

Moderate: Red Hat Security Advisory: libc-client security update

Updated libc-client packages that fix a buffer overflow issue are now available. This update has been rated as having moderate security impact by the Red Hat Security Response Team. C-client is a common API for accessing mailboxes. A buffer overflow flaw was discovered in the way C-client parses...

CommuniGatePro 4.0.6 [EXPLOIT]

Vulnerability in CommuniGatePro webmail under some circumstances may allow attacker to get access to users mailbox. Object: CommuniGatePro version 4.0.6 and earlier. Not vulnerable according to Stalker.com 4.1b2 with UseCookies option Vendor: Stalker Software Inc. www.stalker.com Description:...

Red Hat shadow utils unauthorized mail access

User's mailbox created with adduser has rw permissions for primary group...

lmail local root exploit

lmail is vulnerable to an insecure mktemp race which allows a user to overwrite or create a files. Offending code lmail.c: define MAILTMPFILE "/tmp/rmXXXXXX" ... static char tempfname = MAILTMPFILE; ... if fseekstdin, 0L, 0 != 0 mailfile = fopenmktemptempfname, "w+"; ... Patch: s/mktemp/mkstemp/g...

GroupWise 5.5 User Mailbox Authentication Vulnerability

Advisory ID Internal CORE-2001-0626 GroupWise 5.5 User Mailbox Authentication Vulnerability Core Security Advisory https://www.coresecurity.com Date Published: 2001-06-26 Advisory ID: CORE-2001-0626 Bugtraq ID: None currently assigned. CVE Name: None currently assigned. Title: GroupWise 5.5 User...

mailbox format incopatibility in (WU)imap with mail.local

Title : mailbox format incompatibility in WUimap with mail.local Authors : [email protected], [email protected] Impact : malicious user can put message with faked headers in user's mailbox bypassing virus protection, buffer overflow protection and another MTA/MDA filters. Also imap itself or MUA...