26 matches found
Speedy ASP Forum - 'profileupdate.asp' User Pass Change
Speedy Forum User Pass Change // ajannUser Name : Example: Surname Name User Mail : Example: [email protected] User Ýd : Example: Ýd:1 Admin User Country : Choose Country Turkey Example: Turkey font face="Verdana" size="2" color="FF0000"...
CVE-2004-0671
Brightmail Spamfilter 6.0 and earlier beta releases allows remote attackers to read mail from other users by modifying the id parameter in a viewMsgDetails.do request...
Mandrake Linux 8.2 - '/usr/mail' Local Overflow
!/usr/bin/perl Mandrake 8.2 /usr/mail local exploit Usage: perl d86mail.pl offset Then enter "." dot and press 'Enter' Example: satan@localhost my$ perl d86mail.pl eip: 0xbffffddd .enter Cc: too long to edit sh-2.05$ $shellcode = "\x31\xdb\x89\xd8\xb0\x17\xcd\x80"...
CVE-1999-1554
SGI IRIX issue CVE-1999-1554: The /usr/sbin/Mail program does not properly set the group ID to the start-user’s group, enabling local users to read others’ mail on SGI IRIX 3.3 and 3.3.1. Root cause: group ID handling in Mail is incorrect. Impact: local privilege/ownership breach by reading mail ...
elm_filter.txt
Subject: elm filter program To: [email protected] Mark Ultor wrote: I've found a bug in filter on Elm 2.4 PL25. filter got SGID on mail group. sowatech:$ filter -f perl -e ' print "A" x 5000' Segmentation fault "filter" is inherently unsafe. A bug has been described in 1995 which allows...
Elm 2.4 - filter Arbitrary Mail Disclosure
Elm 2.4 - filter Arbitrary Mail Disclosure source: https://www.securityfocus.com/bid/1802/info Elm is a popular Unix mail client. A vulnerability exists in Elm's 'filter' utility which can grant an attacker access to any user's mail spool. By exploiting a race condition which exists in the creati...